9.3
CVE-2008-5679
- EPSS 3.27%
- Veröffentlicht 19.12.2008 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:00:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.27% | 0.868 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/34294
http://security.gentoo.org/glsa/glsa-200903-30.xml
http://securityreason.com/securityalert/4791
http://www.nruns.com/security_advisory_opera_html_parsing_code_execution.php
http://www.opera.com/docs/changelogs/linux/963/
http://www.opera.com/support/kb/view/921/
http://www.securityfocus.com/archive/1/499315/100/0/threaded
http://www.securitytracker.com/id?1021460