Opera

Opera Browser

282 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2006-4819

  • EPSS 13.92%
  • Published 17.10.2006 21:07:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in Opera 9.0 and 9.01 allows remote attackers to execute arbitrary code via a long URL in a tag (long link address).

5

CVE-2006-3945

Exploit
  • EPSS 1.3%
  • Published 31.07.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

The CSS functionality in Opera 9 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) by setting the background property of a DHTML element to a long http or https URL, which triggers memory corruption.

5

CVE-2006-3353

Exploit
  • EPSS 11.05%
  • Published 06.07.2006 01:05:00
  • Last modified 03.04.2025 01:03:51

Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties.

5

CVE-2006-3331

  • EPSS 1.49%
  • Published 30.06.2006 23:05:00
  • Last modified 03.04.2025 01:03:51

Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks.

7.5

CVE-2006-3198

  • EPSS 9.59%
  • Published 23.06.2006 20:06:00
  • Last modified 03.04.2025 01:03:51

Integer overflow in Opera 8.54 and earlier allows remote attackers to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended.

5

CVE-2006-3199

Exploit
  • EPSS 15.45%
  • Published 23.06.2006 20:06:00
  • Last modified 03.04.2025 01:03:51

Opera 9 allows remote attackers to cause a denial of service (crash) via an A tag with an href attribute with a URL containing a long hostname, which triggers an out-of-bounds operation.

5.1

CVE-2006-1834

Exploit
  • EPSS 15.76%
  • Published 19.04.2006 16:06:00
  • Last modified 03.04.2025 01:03:51

Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings.

5

CVE-2005-4718

Exploit
  • EPSS 10.86%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by op...

5

CVE-2005-4210

Exploit
  • EPSS 3.03%
  • Published 13.12.2005 11:03:00
  • Last modified 03.04.2025 01:03:51

Opera before 8.51, when running on Windows with Input Method Editor (IME) installed, allows remote attackers to cause a denial of service (persistent application crash) by bookmarking a site with a long title.

5

CVE-2005-3946

Exploit
  • EPSS 2.42%
  • Published 01.12.2005 06:03:00
  • Last modified 03.04.2025 01:03:51

Opera 8.50 allows remote attackers to cause a denial of service (crash) via a Java applet with a large string argument to the removeMember JNI method for the com.opera.JSObject class.