Published: 31/12/2004 Updated: 28/02/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Opera 7.54 and previous versions uses kfmclient exec to handle unknown MIME types, which allows remote malicious users to execute arbitrary code via a shortcut or launcher that contains an Exec entry.

Vulnerable Product	Search on Vulmon	Subscribe to Product
opera opera browser
gentoo linux
kde kde 3.2.3
suse suse linux 1.0
suse suse linux 2.0
suse suse linux 3.0
suse suse linux 4.0
suse suse linux 4.2
suse suse linux 4.3
suse suse linux 4.4
suse suse linux 4.4.1
suse suse linux 5.0
suse suse linux 5.1
suse suse linux 5.2
suse suse linux 5.3
suse suse linux 6.0
suse suse linux 6.1
suse suse linux 6.2
suse suse linux 6.3
suse suse linux 6.4
suse suse linux 7.0
suse suse linux 7.1
suse suse linux 7.2
suse suse linux 7.3
suse suse linux 8.0
suse suse linux 8.1
suse suse linux 8.2
suse suse linux 9.0
suse suse linux 9.1
suse suse linux 9.2

source: wwwsecurityfocuscom/bid/11901/info It is reported that Opera for Linux is susceptible to a remote command execution vulnerability This issue is due to a default configuration setting in Opera that utilizes the KDE 'kfmclient' utility to open unknown content Exploitation of this issue allows attacker-supplied commands to be exec ...

NVD-CWE-noinfo http://www.opera.com/linux/changelogs/754u2/http://www.zone-h.org/advisories/read/id=6503 http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml http://lists.suse.com/archive/suse-security-announce/2005-Mar/0007.html http://www.securityfocus.com/bid/11901 http://secunia.com/advisories/13447/https://exchange.xforce.ibmcloud.com/vulnerabilities/18457 https://nvd.nist.gov https://www.exploit-db.com/exploits/24828/

CVE-2004-1491

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect