| ID |
CVE-2007-3819
|
| Summary |
Opera 9.21 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 5.0 (as of 15-10-2018 - 21:31) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
PARTIAL |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
| refmap
via4
|
| bid | 24917 | | bugtraq | - 20070713 Opera/Konqueror: data: URL scheme address bar spoofing
- 20070716 Re: Opera/Konqueror: data: URL scheme address bar spoofing
| | gentoo | GLSA-200708-17 | | misc | http://alt.swiecki.net/oper1.html | | osvdb | 38122 | | sectrack | 1018397 | | secunia | | | sreason | 2891 | | suse | SUSE-SR:2007:015 | | vupen | ADV-2007-2537 | | xf | opera-konqueror-addressbar-spoofing(35430) |
|
| Last major update |
15-10-2018 - 21:31 |
| Published |
17-07-2007 - 01:30 |
| Last modified |
15-10-2018 - 21:31 |
