CVE-2008-5680

high

Description

Multiple buffer overflows in Opera before 9.63 might allow (1) remote attackers to execute arbitrary code via a crafted text area, or allow (2) user-assisted remote attackers to execute arbitrary code via a long host name in a file: URL. NOTE: this might overlap CVE-2008-5178.

References

http://www.securitytracker.com/id?1021456

http://www.securityfocus.com/archive/1/498543/100/0/threaded

http://www.securityfocus.com/archive/1/498517/100/0/threaded

http://www.securityfocus.com/archive/1/498499/100/0/threaded

http://www.securityfocus.com/archive/1/498481/100/0/threaded

http://www.securityfocus.com/archive/1/498452/100/0/threaded

http://www.opera.com/support/kb/view/922/

http://www.opera.com/support/kb/view/920/

http://www.opera.com/docs/changelogs/linux/963/

http://securitytracker.com/id?1021457

http://security.gentoo.org/glsa/glsa-200903-30.xml

http://secunia.com/advisories/34294

Details

Source: Mitre, NVD

Published: 2008-12-19

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High