Vendor Dictionary: Opera Software ASA

Opera Software ASA

Short Name:	Opera
Previous Names:	[None Entered]
URL:	http://www.opera.com/ [visit link]
Email:	[None Entered]
Security URL:	http://www.opera.com/security/ [visit link]
Security Email:	[None Entered]
Knowledge Base:	http://www.opera.com/support/service/ [visit link]
Notes:	Bugs web form: http://www.opera.com/support/bugs/ Contact web form: http://www.opera.com/contact/

Vulnerabilities by Vendor Product

Opera Software ASA

« Previous 1 2 Next »

Opera Software ASA

Opera for Linux: 6.11; OSVDB ID: 17580 Opera HTTP Location Header XSS; 7.1.0 Beta 1 build 388; OSVDB ID: 58496 Opera Filename Extension Handling Overflow

: 9; OSVDB ID: 27374 Opera CSS Background Property HTTPS Memory Corruption

Opera Mini for Android: 7.5; OSVDB ID: 88764 Opera for Android WebView Class Crafted Application Information Disclosure

Opera Web Browser: 7.23; OSVDB ID: 6590 Opera favicon.ico Address Bar Spoofing; 7.50; OSVDB ID: 6590 Opera favicon.ico Address Bar Spoofing; 7.53; OSVDB ID: 9016 Opera Third Party Cookie Handling Session Replay; 8 Beta 3; OSVDB ID: 15627 Opera First-Generation Digital Certificate Spoofing; 8.50; OSVDB ID: 21641 Opera Bookmarked Page Title Overflow DoS; 8; OSVDB ID: 21641 Opera Bookmarked Page Title Overflow DoS; 9.10; OSVDB ID: 66472 Opera opera:config Script Access Configuration Overwrite

Opera for Windows: 6.06; OSVDB ID: 2942 Multiple Browser Domain URL Spoofing; 7.02; OSVDB ID: 3917 Opera Browser File Download Extension Spoofing; 7.03; OSVDB ID: 3917 Opera Browser File Download Extension Spoofing; OSVDB ID: 58496 Opera Filename Extension Handling Overflow; 7.10; OSVDB ID: 3917 Opera Browser File Download Extension Spoofing; OSVDB ID: 58496 Opera Filename Extension Handling Overflow; 7.11; OSVDB ID: 3917 Opera Browser File Download Extension Spoofing; 7.23; OSVDB ID: 3917 Opera Browser File Download Extension Spoofing; 7.54; OSVDB ID: 12291 Opera Download File Type Dialog Spoofing; 7.01; OSVDB ID: 17580 Opera HTTP Location Header XSS; 8.0; OSVDB ID: 17580 Opera HTTP Location Header XSS; 11.00; OSVDB ID: 70726 Opera on Windows Downloads Manager Filesystem Viewing Application Pathname Verification Weakness Arbitrary Code Execution; 8.01; OSVDB ID: 18468 Opera Extended ASCII Codes Processing Download Dialog File Extension Spoofing; 12.14; OSVDB ID: 91162 RC4 Algorithm Pseudo-random Character Generation Weakness Plaintext Content Disclosure

Browser: 7.51; OSVDB ID: 7216 Opera inline frame Address Bar Spoofing; 7.52; OSVDB ID: 7216 Opera inline frame Address Bar Spoofing

Opera for Mac: 11.61; OSVDB ID: 80723 Opera for Mac External Content Area Crafted Styling Address / Security Dialog Spoofing Weakness

Opera: 11.61; OSVDB ID: 80622 Opera history.pushState / history.replaceState Cross Domain State Disclosure

Opera for Android: 12.0; OSVDB ID: 88764 Opera for Android WebView Class Crafted Application Information Disclosure

Opera: 7.23; OSVDB ID: 6108 Opera onUnload Address Bar Spoofing; OSVDB ID: 6107 Multiple Browser Telnet URI Handler File Manipulation; 6.x; 5.x; 7.0x; 7.1x; 7.2x; 7.50x; 7.51; 7.53; OSVDB ID: 8331 Opera location Object Crafted URL Arbitrary Local File Access; 7.52; OSVDB ID: 8331 Opera location Object Crafted URL Arbitrary Local File Access; 7.53 Build 3850; OSVDB ID: 8317 Opera Multiple Function Address Bar Spoofing; 7.54; OSVDB ID: 10983 Multiple Browser Cross Tab Dialog Box Spoofing; OSVDB ID: 12007 Opera sun.security.krb5.Credentials Java Class User Name Disclosure; OSVDB ID: 8288 Sun Java JRE / SDK XSLT Processor Applet Privilege Escalation; 7.54; 8; 7.x; 8.0; 8.0 Final Build 1095; OSVDB ID: 17543 Opera javascript: URL XSS; 8.02; OSVDB ID: 19509 Opera Mail Client Crafted Content-Type File Extension Spoofing; OSVDB ID: 19508 Opera Mail Client User Cache Directory file:// Arbitrary Script Execution; OSVDB ID: 21003 Opera Command Line URL Shell Command Injection; 8.5; OSVDB ID: 21003 Opera Command Line URL Shell Command Injection; 8.01; OSVDB ID: 21003 Opera Command Line URL Shell Command Injection; 8.00; OSVDB ID: 21003 Opera Command Line URL Shell Command Injection; 9; OSVDB ID: 27510 Opera Large href Tag DoS; 9.00 for Linux; OSVDB ID: 27511 Opera Crafted iframe Style Sheet Property Out-of-bounds DoS; 9.00 for Windows; OSVDB ID: 27511 Opera Crafted iframe Style Sheet Property Out-of-bounds DoS; 9.27; OSVDB ID: 46295 Opera Cross-page Content Manipulation; 9.61; OSVDB ID: 50953 Opera file:// URL Host Name Handling Overflow; OSVDB ID: 49472 Opera History Search Results Page Arbitrary Remote Command Execution; 5.x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 6.x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 7.0x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 7.1x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 7.2x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 7.50x; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 7.51; OSVDB ID: 59836 Opera Cross-domain Frame Injection Content Spoofing; 9.52; OSVDB ID: 64784 Opera mailto: URL Multiple IFRAME Element Handling DoS; OSVDB ID: 64788 Opera mailto: URL IMG Element SRC Attribute Multiple Image Redirect DoS; OSVDB ID: 65111 Opera Invalid news / nntp URI IFRAME Element Handling Remote DoS; 10.62; OSVDB ID: 69620 Opera Unspecified Cross Domain Page Loading; OSVDB ID: 68830 Opera Video Stream Origin Verification Weakness HTML5 Canvas Content Information Disclosure; 10.70; OSVDB ID: 69620 Opera Unspecified Cross Domain Page Loading; 10.70lr; OSVDB ID: 70004 Opera Web Page Content Dialog Box Focus Weakness; OSVDB ID: 70006 Opera Unspecified Issue; OSVDB ID: 70007 Opera Extension Update Security Policy Access Restriction Bypass; OSVDB ID: 70008 Opera Web Page Security Indication Display Weakness; OSVDB ID: 70009 Opera HTTPS X.509 Certificate Information Presentation Weakness; OSVDB ID: 70010 Opera Auto-update Opera Unite Update Remote DoS; OSVDB ID: 70011 Opera WebSockets Unspecified Remote Issue; OSVDB ID: 70005 Opera WAP WML Form Field Clearing Weakness Information Disclosure; OSVDB ID: 70012 Opera on Windows Insecure Third Party Module Warning Message Implementation Weakness; 11.00; OSVDB ID: 70732 Opera Unspecified Web Page Content Remote DoS; OSVDB ID: 70731 Opera Delete Private Data Feature Weakness Email Account Password Disclosure; OSVDB ID: 70730 Opera HTTP Redirection Unspecified Response Manipulation Local File Remote Access; OSVDB ID: 70729 Opera opera: URL Restriction Weakness Clickjacking; OSVDB ID: 70728 Opera Large Form Input Handling Crafted HTML Document Memory Corruption; OSVDB ID: 70727 Opera CSS Extensions for XML Crafted javascript: URL CSS Filtering Bypass; OSVDB ID: 70733 Opera WAP Dropdown List Crafted WAP Document DoS; 10.62; OSVDB ID: 68826 Opera IMG Element SVG Document Reference Memory Corruption DoS; OSVDB ID: 68827 Opera Flash Movie Transparent Window Mode Property HTML Document Navigation DoS; OSVDB ID: 68828 Opera File Saving Redirect Application Crash DoS; OSVDB ID: 68829 Opera Error Page JavaScript Code Security Context Selection Weakness; OSVDB ID: 68831 Opera Unspecified Web Script Reload / Redirect Restriction Weakness; OSVDB ID: 68832 Opera Address Bar Window Resizing URL Spoofing Weakness; OSVDB ID: 68833 Opera Cross-origin Document CSS Stylesheet Interpretation Missing Token Sequence Information Disclosure; 11.10; OSVDB ID: 72406 Opera Frameset Construct Handling Memory Corruption; 7.x; OSVDB ID: 79191 Opera Javascript Dialog Origin Spoofing; 8.0; OSVDB ID: 79191 Opera Javascript Dialog Origin Spoofing; 7.54; OSVDB ID: 79214 Opera Script Code Obfuscation (Ghost); 8; OSVDB ID: 79214 Opera Script Code Obfuscation (Ghost); 11.61; OSVDB ID: 80623 Opera Arbitrary Site Dialog Address Field Spoofing Weakness; OSVDB ID: 80722 Opera on Unix Temporary File Printing Symlink Arbitrary File Modification; OSVDB ID: 80721 Opera on Unix Temporary File Printing Permission Weakness Local Information Disclosure; OSVDB ID: 80620 Opera Small Window Manipulation Arbitrary File Download Weakness; OSVDB ID: 80621 Opera Dialog Overlay Arbitrary File Download Weakness; OSVDB ID: 80624 Opera Timed Reload Address Field Spoofing Weakness; 11.62; OSVDB ID: 81809 Opera Out-of-bounds URL String Parsing Memory Corruption; OSVDB ID: 83210 Opera Malformed WebGL Content Handling DoS; OSVDB ID: 83206 Opera Multiple Origin Page Reload DoS; OSVDB ID: 83211 Opera Invalid Character Encoding Handling DoS; OSVDB ID: 83207 Opera Adjacent wrap=off TEXTAREA / overflow: auto Block Elements Handling DoS; OSVDB ID: 83207 Opera Adjacent wrap=off TEXTAREA / overflow: auto Block Elements Handling DoS; OSVDB ID: 83208 Opera Malformed Domain Name Handling DoS; OSVDB ID: 83209 Opera JavaScript Manipulated Form Submission DoS; OSVDB ID: 83212 Opera Crafted IFRAME Element Handling DoS; Unspecified; OSVDB ID: 82123 Opera about:config User Pref XSS; 9.62; OSVDB ID: 82726 Opera Crafted X.509 SSL Certificate Validation Failure MiTM Weakness; 12.00 beta; OSVDB ID: 82952 Opera Double-click Action Pop-up Window Display XSS Weakness; OSVDB ID: 82954 Opera JSON Resource Handling Cross-domain Information Disclosure; OSVDB ID: 82951 Opera Keyboard Sequence Navigation Unspecified Remote Code Execution; OSVDB ID: 82955 Opera Timed Change Address Bar Manipulation URL Spoofing Weakness; OSVDB ID: 82953 Opera Blocked Nagivation Address Bar Spoofing Weakness; 12.00 beta; 12.00 beta; 12.00 beta; 12.00 beta; 12.00.1467; OSVDB ID: 83044 Opera Unspecified Issue (2011-4065); 12.00 beta; OSVDB ID: 83049 Opera for Mac Unspecified "Moderate" Issue; 11.62; 11.62; 11.62; 11.62; 11.62; 11.62; 11.62; 11.52; OSVDB ID: 83424 Opera addSpacesToResults() Function Remote Overflow DoS; 11.52; OSVDB ID: 83425 Opera sj_wf(a) Function Remote Overflow DoS; 10.51; OSVDB ID: 83437 Opera Long Unicode String Handling DoS; 12.00; OSVDB ID: 84447 Opera Unspecified Issue (2012-4145); OSVDB ID: 84448 Opera Small Window Download Dialog Box Display Bypass; OSVDB ID: 84450 Opera DOM Element Handling XSS Protection Bypass; OSVDB ID: 84449 Opera HTML Character Handling XSS Protection Bypass; 11.65; OSVDB ID: 84447 Opera Unspecified Issue (2012-4145); OSVDB ID: 84448 Opera Small Window Download Dialog Box Display Bypass; OSVDB ID: 84450 Opera DOM Element Handling XSS Protection Bypass; OSVDB ID: 84449 Opera HTML Character Handling XSS Protection Bypass; 12.00; 11.65; 12.00; 11.65; 12.00; 11.65; 12.00; OSVDB ID: 84688 Opera Unspecified DoS; 12.01; OSVDB ID: 85110 Opera Small Window Dialog Box Button Truncation Display Weakness; 11.66; OSVDB ID: 85110 Opera Small Window Dialog Box Button Truncation Display Weakness; 11.52; OSVDB ID: 85227 Opera Homograph Character Unspecified Address Bar Spoofing; 12.09; OSVDB ID: 87234 Opera data: URI Handling XSS Weakness; OSVDB ID: 87099 Opera SVG Image Handling Arbitrary Code Execution; OSVDB ID: 87102 Opera WebP Image File Handling Out-of-bounds Read Information Disclosure; OSVDB ID: 87100 Opera Certificate Revocation Status Verification Weakness; OSVDB ID: 87101 Opera CORS (Cross-Origin Resource Sharing) Request Parsing Same Origin Policy Bypass Information Disclosure; OSVDB ID: 87103 Opera Native Object Overrride Document Method Manipulation XSS; 12.09; 12.09; 12.09; 12.09; 12.09; 12.10; OSVDB ID: 87577 Opera Error Page Handling Local File Enumeration; OSVDB ID: 87578 Opera HTTP Response Handling Overflow; 12.10; 5.11; OSVDB ID: 88015 Opera Image Saturation Handling DoS; 12.11 Build 1661; OSVDB ID: 88101 Opera Opera.dll GIF Image Handling Heap Buffer Underflow; 12.12; OSVDB ID: 88101 Opera Opera.dll GIF Image Handling Heap Buffer Underflow; 11.60; OSVDB ID: 78989 Opera Multiple Array Large Integer Argument Parsing Remote Overflow DoS; OSVDB ID: 78542 Opera Framed Content Handling Same Origin Policy Bypass XSS Weakness; OSVDB ID: 78541 Opera JavaScript Event HTML Element Referencing Local File Enumeration; 12.11; OSVDB ID: 88657 Opera Multiple Site Loading Requests Handling URL Bar Spoofing; OSVDB ID: 88656 Opera for Linux Profile Folder Permission Weakness Local File Manipulation; 12.11; 12.10 Beta; OSVDB ID: 88924 Opera Multiple Element Shortcut Handling Phishing Weakness; 11.11; OSVDB ID: 89588 Opera Unspecified Remote Overflow; 12.12; OSVDB ID: 89615 Opera DOM Event Handling Arbitrary Code Execution; OSVDB ID: 89614 Opera SVG Document clipPath Handling Arbitrary Code Execution; 12.12; 12.12; OSVDB ID: 89849 TLS / DTLS Protocol CBC-mode Ciphersuite Distinguishing Attack Information Disclosure Weakness; OSVDB ID: 89616 Opera CORS (Cross-Origin Resource Sharing) Request Parsing Preflight Request Omission CSRF Weakness; OSVDB ID: 89848 TLS / DTLS Protocol CBC-mode Ciphersuite Timing Analysis Plaintext Recovery Cryptanalysis Attack; 12.12; 12.12; 12.12; 12.14; OSVDB ID: 91989 Opera Top-Level Domain Set-Cookie Header Handling Weakness; OSVDB ID: 91988 Opera Unspecified Moderately Severe Issue; 12.14; 12.14; OSVDB ID: 92286 Opera localStorage Method History Manipulation Disk Consumption DoS; 12.14; OSVDB ID: 92310 Opera Third-party App Search Bar Service Subversion Weakness

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.