The TLS implementation in Opera prior to 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote malicious users to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opera opera browser 12.01 |
||
opera opera browser 12.00 |
||
opera opera browser 12.02 |
||
opera opera browser 12.11 |
||
opera opera browser |
||
opera opera browser 12.10 |