Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Opera_web_browser
(Opera_software)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-12-31 | CVE-2002-2332 | Buffer overflow in Opera 6.01 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes. | Opera_web_browser | N/A | ||
| 2002-10-04 | CVE-2002-1091 | Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width. | Mozilla, Navigator, Opera_web_browser | N/A | ||
| 2002-10-04 | CVE-2002-0898 | Opera 6.0.1 and 6.0.2 allows a remote web site to upload arbitrary files from the client system, without prompting the client, via an input type=file tag whose value contains a newline. | Opera_web_browser | N/A | ||
| 2002-08-12 | CVE-2002-0783 | Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL. | Opera_web_browser | N/A | ||
| 2002-05-29 | CVE-2002-0270 | Opera, when configured with the "Determine action by MIME type" option disabled, interprets an object as an HTML document even when its MIME Content-Type is text/plain, which could allow remote attackers to execute arbitrary script in documents that the user does not expect, possibly through web applications that use a text/plain type to prevent cross-site scripting attacks. | Opera_web_browser | N/A | ||
| 2002-05-29 | CVE-2002-0243 | Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. | Opera_web_browser | N/A | ||
| 2001-12-31 | CVE-2001-1491 | Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images. | Opera_web_browser | N/A | ||
| 2001-07-09 | CVE-2001-1245 | Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote attackers to cause a denial of service, possibly with a header whose value is the same as a MIME header name. | Opera_web_browser | N/A | ||
| 2001-11-15 | CVE-2001-0898 | Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript that uses setTimeout to (1) access data after a new window to the domain has been opened or (2) access data via about:cache. | Opera_web_browser | N/A | ||
| 1998-08-14 | CVE-1999-1283 | Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag. | Opera_web_browser | N/A |