Published: 19/12/2008 Updated: 11/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple buffer overflows in Opera prior to 9.63 might allow (1) remote malicious users to execute arbitrary code via a crafted text area, or allow (2) user-assisted remote malicious users to execute arbitrary code via a long host name in a file: URL. NOTE: this might overlap CVE-2008-5178.

Vulnerable Product	Search on Vulmon	Subscribe to Product
opera opera browser 9.25
opera opera browser 9.24
opera opera browser 9.10
opera opera browser 9.02
opera opera browser 8.54
opera opera browser 8.01
opera opera browser 7.54
opera opera browser 7.50
opera opera browser 7.53
opera opera browser 7.0
opera opera browser 6.0
opera opera browser 6.03
opera opera browser 6.02
opera opera browser 5.0
opera opera browser 5.10
opera opera browser 9.50
opera opera browser 9.21
opera opera browser 9.20
opera opera browser 9.0
opera opera browser 8.0
opera opera browser 8.02
opera opera browser 8.50
opera opera browser 7.20
opera opera browser 7.11
opera opera browser 7.02
opera opera browser 6.04
opera opera browser 6.05
opera opera browser 6.1
opera opera browser 6.12
opera opera browser 4.02
opera opera browser 4.01
opera opera browser 3.61
opera opera browser 3.60
opera opera browser 2.12
opera opera browser 2.10
opera opera browser 9.60
opera opera browser 9.51
opera opera browser 9.23
opera opera browser 9.22
opera opera browser 9.01
opera opera browser 8.51
opera opera browser 8.53
opera opera browser 7.52
opera opera browser 7.51
opera opera browser 7.03
opera opera browser 7.10
opera opera browser 7.01
opera opera browser 7.60
opera opera browser 5.02
opera opera browser 4.00
opera opera browser 3.62
opera opera browser 3.00
opera opera browser 1.00
opera opera browser 9.52
opera opera browser 5.12
opera opera browser 3.21
opera opera browser 3.10
opera opera browser 2.00
opera opera browser 9.27
opera opera browser 9.26
opera opera browser 9.12
opera opera browser 8.52
opera opera browser 7.21
opera opera browser 7.22
opera opera browser 7.23
opera opera browser 6.06
opera opera browser 6.01
opera opera browser 6.11
opera opera browser 5.11
opera opera browser 3.51
opera opera browser 3.50
opera opera browser 9.61
opera opera browser

<html> <head><title>uh?</title></head> <body> <script> // k`sOSe 11/15/2008 // tested on Windows XP SP3, opera 962 international version // vulnerability found by send9 // there are many ways to achieve code execution, tons of function pointers to overwrite // maybe there's one more reliable ...

CWE-119 http://www.securitytracker.com/id?1021456 http://securitytracker.com/id?1021457 http://www.opera.com/support/kb/view/922/http://www.opera.com/support/kb/view/920/http://www.opera.com/docs/changelogs/linux/963/http://security.gentoo.org/glsa/glsa-200903-30.xml http://secunia.com/advisories/34294 http://www.securityfocus.com/archive/1/498499/100/0/threaded http://www.securityfocus.com/archive/1/498543/100/0/threaded http://www.securityfocus.com/archive/1/498517/100/0/threaded http://www.securityfocus.com/archive/1/498481/100/0/threaded http://www.securityfocus.com/archive/1/498452/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/7135/

CVE-2008-5680

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect