Opera

Opera Browser

282 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-1728

Exploit
  • EPSS 11.46%
  • Veröffentlicht 06.05.2010 14:53:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript ...

10

CVE-2010-1349

Exploit
  • EPSS 41.84%
  • Veröffentlicht 12.04.2010 18:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.

5

CVE-2010-1310

  • EPSS 0.31%
  • Veröffentlicht 08.04.2010 17:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera 10.50 allows remote attackers to obtain sensitive information via crafted XSLT constructs, which cause Opera to return cached contents of other pages.

4.3

CVE-2010-0653

Exploit
  • EPSS 0.46%
  • Veröffentlicht 18.02.2010 18:00:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote attackers to obtain sensitive information via a crafted docu...

5.8

CVE-2009-4071

  • EPSS 0.76%
  • Veröffentlicht 24.11.2009 17:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site s...

10

CVE-2009-4072

  • EPSS 1.39%
  • Veröffentlicht 24.11.2009 17:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in Opera before 10.10 has unknown impact and attack vectors, related to a "moderately severe issue."

9.3

CVE-2009-3831

  • EPSS 7.34%
  • Veröffentlicht 30.10.2009 20:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Opera before 10.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted domain name.

5.8

CVE-2009-3832

  • EPSS 1.22%
  • Veröffentlicht 30.10.2009 20:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Opera before 10.01 on Windows does not prevent use of Web fonts in rendering the product's own user interface, which allows remote attackers to spoof the address field via a crafted web site.

5

CVE-2008-7245

  • EPSS 2.45%
  • Veröffentlicht 18.09.2009 22:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Opera 9.52 and earlier allows remote attackers to cause a denial of service (unusable browser) by calling the window.print function in a loop, aka a "printing DoS attack," possibly a related issue to CVE-2009-0821.

4.3

CVE-2009-3265

  • EPSS 0.23%
  • Veröffentlicht 18.09.2009 22:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in Opera 9 and 10 allows remote attackers to inject arbitrary web script or HTML via a (1) RSS or (2) Atom feed, related to the rendering of the application/rss+xml content type as "scripted content." NOTE: th...