CVE-2016-4075 - Opera Mini 13 and Opera Stable 36 allow remote attackers to spoof the displayed URL via a crafted HT

CVE-2016-4075

Summary

Opera Mini 13 and Opera Stable 36 allow remote attackers to spoof the displayed URL via a crafted HTML document, related to the about:blank URL.

References

Vulnerable Configurations

cpe:2.3:a:opera:opera_mini:13.00:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_mini:13.00:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:36.0:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:36.0:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	NONE

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:N

refmap via4

bid	98004
misc	http://abhikafle.com.np/opera-url-spoofing-poc/

Last major update

06-04-2022 - 19:34

Published

21-04-2017 - 02:59

Last modified

06-04-2022 - 19:34