CVE-2011-3388

critical

Description

Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field and page information dialog to contain security information based on the trusted site, instead of the insecure site.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/69515

http://www.securitytracker.com/id?1025997

http://www.securityfocus.com/bid/49388

http://www.opera.com/support/kb/view/1000/

http://www.opera.com/docs/changelogs/windows/1151/

http://www.opera.com/docs/changelogs/unix/1151/

http://www.opera.com/docs/changelogs/mac/1151/

http://secunia.com/advisories/45791

http://osvdb.org/74828

Details

Source: Mitre, NVD

Published: 2011-09-06

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical