Vulnerabilities > CVE-2009-2540 - Resource Management Errors vulnerability in Opera Browser

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
opera
CWE-399
exploit available

Summary

Opera, possibly 9.64 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.

Vulnerable Configurations

Part Description Count
Application
Opera
119

Common Weakness Enumeration (CWE)

Exploit-Db

idEDB-ID:9160

Oval

accepted2014-03-17T04:00:23.420-04:00
classvulnerability
contributors
  • namePrabhu S A
    organizationSecPod Technologies
  • nameJosh Turpin
    organizationSymantec Corporation
  • nameMaria Kedovskaya
    organizationALTX-SOFT
  • nameMaria Mikhno
    organizationALTX-SOFT
definition_extensions
commentOpera Browser is installed
ovaloval:org.mitre.oval:def:6482
descriptionOpera, possibly 9.64 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
familywindows
idoval:org.mitre.oval:def:5957
statusaccepted
submitted2009-10-23T12:57:10
titleOpera integer value denial of service
version11