10

CVE-2008-4292

Opera before 9.52 does not check the CRL override upon encountering a certificate that lacks a CRL, which has unknown impact and attack vectors.  NOTE: it is not clear whether this is a vulnerability, but the vendor included it in a security section of the advisory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OperaOpera Browser Version <= 9.51
OperaOpera Browser Version5.0
OperaOpera Browser Version5.0 Updatebeta2
OperaOpera Browser Version5.0 Updatebeta3
OperaOpera Browser Version5.0 Updatebeta4
OperaOpera Browser Version5.0 Updatebeta5
OperaOpera Browser Version5.0 Updatebeta6
OperaOpera Browser Version5.0 Updatebeta7
OperaOpera Browser Version5.0 Updatebeta8
OperaOpera Browser Version5.02
OperaOpera Browser Version5.10
OperaOpera Browser Version5.11
OperaOpera Browser Version5.12
OperaOpera Browser Version6.0
OperaOpera Browser Version6.0 Updatebeta1
OperaOpera Browser Version6.0 Updatebeta2
OperaOpera Browser Version6.0 Updatebeta3
OperaOpera Browser Version6.0 Updatetp1
OperaOpera Browser Version6.0 Updatetp2
OperaOpera Browser Version6.0 Updatetp3
OperaOpera Browser Version6.1
OperaOpera Browser Version6.01
OperaOpera Browser Version6.1 Updatebeta1
OperaOpera Browser Version6.02
OperaOpera Browser Version6.03
OperaOpera Browser Version6.04
OperaOpera Browser Version6.05
OperaOpera Browser Version6.06
OperaOpera Browser Version6.11
OperaOpera Browser Version6.12
OperaOpera Browser Version7.0
OperaOpera Browser Version7.0 Updatebeta1
OperaOpera Browser Version7.0 Updatebeta1_v2
OperaOpera Browser Version7.0 Updatebeta2
OperaOpera Browser Version7.01
OperaOpera Browser Version7.02
OperaOpera Browser Version7.03
OperaOpera Browser Version7.10
OperaOpera Browser Version7.10 Updatebeta1
OperaOpera Browser Version7.11
OperaOpera Browser Version7.11 Updatebeta2
OperaOpera Browser Version7.20
OperaOpera Browser Version7.20 Updatebeta7
OperaOpera Browser Version7.21
OperaOpera Browser Version7.22
OperaOpera Browser Version7.23
OperaOpera Browser Version7.50
OperaOpera Browser Version7.50 Updatebeta1
OperaOpera Browser Version7.51
OperaOpera Browser Version7.52
OperaOpera Browser Version7.53
OperaOpera Browser Version7.54
OperaOpera Browser Version7.54 Updateupdate1
OperaOpera Browser Version7.54 Updateupdate2
OperaOpera Browser Version7.60
OperaOpera Browser Version8.0
OperaOpera Browser Version8.0 Updatebeta1
OperaOpera Browser Version8.0 Updatebeta2
OperaOpera Browser Version8.0 Updatebeta3
OperaOpera Browser Version8.01
OperaOpera Browser Version8.02
OperaOpera Browser Version8.50
OperaOpera Browser Version8.51
OperaOpera Browser Version8.52
OperaOpera Browser Version8.53
OperaOpera Browser Version8.54
OperaOpera Browser Version9.0
OperaOpera Browser Version9.0 Updatebeta1
OperaOpera Browser Version9.0 Updatebeta2
OperaOpera Browser Version9.01
OperaOpera Browser Version9.02
OperaOpera Browser Version9.10
OperaOpera Browser Version9.12
OperaOpera Browser Version9.20
OperaOpera Browser Version9.20 Updatebeta1
OperaOpera Browser Version9.21
OperaOpera Browser Version9.22
OperaOpera Browser Version9.23
OperaOpera Browser Version9.24
OperaOpera Browser Version9.25
OperaOpera Browser Version9.26
OperaOpera Browser Version9.27
OperaOpera Browser Version9.50
OperaOpera Browser Version9.50 Updatebeta1
OperaOpera Browser Version9.50 Updatebeta2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.92% 0.772
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/31549
Vendor Advisory
http://secunia.com/advisories/32538
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200811-01.xml
http://www.openwall.com/lists/oss-security/2008/09/19/2
http://www.openwall.com/lists/oss-security/2008/09/24/4
http://www.opera.com/docs/changelogs/freebsd/952/
http://www.opera.com/docs/changelogs/linux/952/
http://www.opera.com/docs/changelogs/mac/952/
http://www.opera.com/docs/changelogs/solaris/952/
http://www.opera.com/docs/changelogs/windows/952/
http://www.vupen.com/english/advisories/2008/2416
Vendor Advisory
http://bugs.gentoo.org/show_bug.cgi?id=235298
http://my.opera.com/community/forums/topic.dml?id=241988&t=1222404671&page=1
http://my.opera.com/yngve/blog/2008/06/27/nobody-checks-the-padlock-debunked-by-opera-users
https://exchange.xforce.ibmcloud.com/vulnerabilities/45589