Vulnerabilities > CVE-2004-0872 - Incorrect Resource Transfer Between Spheres vulnerability in Opera Browser 7.51
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Opera does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote attackers to steal cookies and conduct unauthorized activities, aka "Cross Security Boundary Cookie Injection."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |