ID CVE-2007-1737
Summary Opera 9.10 does not check URLs embedded in (1) object or (2) iframe HTML tags against the phishing site blacklist, which allows remote attackers to bypass phishing protection.
References
Vulnerable Configurations
  • cpe:2.3:a:opera:opera_browser:9.10:*:*:*:*:*:*:*
    cpe:2.3:a:opera:opera_browser:9.10:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 16-10-2018 - 16:40)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bugtraq 20070328 Bypass phishing protection in Firefox / Opera
sreason 2488
xf opera-url-security-bypass(33488)
Last major update 16-10-2018 - 16:40
Published 28-03-2007 - 22:19
Last modified 16-10-2018 - 16:40
Back to Top