Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the contents of the files, via an unknown response manipulation.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/70730 - | |
References | () http://secunia.com/advisories/43023 - | |
References | () http://www.opera.com/docs/changelogs/mac/1101/ - | |
References | () http://www.opera.com/docs/changelogs/unix/1101/ - | |
References | () http://www.opera.com/docs/changelogs/windows/1101/ - | |
References | () http://www.opera.com/support/kb/view/984/ - Vendor Advisory | |
References | () http://www.securityfocus.com/bid/46036 - | |
References | () http://www.vupen.com/english/advisories/2011/0231 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12296 - |
Information
Published : 2011-01-31 21:00
Updated : 2024-11-21 01:24
NVD link : CVE-2011-0684
Mitre link : CVE-2011-0684
CVE.ORG link : CVE-2011-0684
JSON object : View
Products Affected
opera
- opera_browser
CWE
CWE-20
Improper Input Validation