Detections
Analytics
Opera < 8.54 Multiple Vulnerabilities
medium Nessus Plugin ID 21221
Synopsis
The remote host contains a web browser that is prone to a buffer overflow attack.Description
The remote host is using Opera, an alternative web browser.The version of Opera installed on the remote host contains a buffer overflow that can be triggered by a long value within a stylesheet attribute. Successful exploitation can lead to a browser crash and possibly allow for the execution of arbitrary code subject to the privileges of the user running Opera.
Solution
Upgrade to Opera 8.54 or later.See Also
https://www.securityfocus.com/archive/1/430876/30/0/threaded
http://web.archive.org/web/20170713152222/http://www.opera.com:80/docs/changelogs/windows/854/
Plugin Details
Severity: Medium
ID: 21221
File Name: opera_854.nasl
Version: 1.16
Type: local
Agent: windows
Family: Windows
Published: 4/14/2006
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.3
CVSS v2
Risk Factor: Medium
Base Score: 5.1
Temporal Score: 4
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/a:opera:opera_browser
Required KB Items: SMB/Opera/Version_UI
Exploit Available: true
Exploit Ease: Exploits are available
Vulnerability Publication Date: 4/13/2006
Reference Information
CVE: CVE-2006-1834
BID: 17513