Vulnerabilities > Opera > Opera Browser > 6.05
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-18 | CVE-2007-5540 | Improper Input Validation vulnerability in Opera Browser Unspecified vulnerability in Opera before 9.24 allows remote attackers to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors. | 7.5 |
2007-10-18 | CVE-2007-5476 | Unspecified vulnerability in Adobe Flash Player On Opera Browser For Mac OSX Unspecified vulnerability in Adobe Flash Player 9.0.47.0 and earlier, when running on Opera before 9.24 on Mac OS X, has unknown "Highly Severe" impact and unknown attack vectors. | 10.0 |
2007-08-15 | CVE-2007-4367 | Release of Invalid Pointer or Reference vulnerability in Opera Browser Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer." | 9.3 |
2007-07-21 | CVE-2007-3929 | Use After Free vulnerability in Opera Browser Use-after-free vulnerability in the BitTorrent support in Opera before 9.22 allows user-assisted remote attackers to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object. | 9.3 |
2007-05-22 | CVE-2007-2809 | Classic Buffer Overflow vulnerability in Opera Browser Buffer overflow in the transfer manager in Opera before 9.21 for Windows allows user-assisted remote attackers to execute arbitrary code via a crafted torrent file. | 9.3 |
2007-04-13 | CVE-2007-2022 | Information Exposure vulnerability in multiple products Adobe Macromedia Flash Player 7 and 9, when used with Opera before 9.20 or Konqueror before 20070613, allows remote attackers to obtain sensitive information (browser keystrokes), which are leaked to the Flash Player applet. | 6.8 |
2007-01-29 | CVE-2006-6955 | Improper Input Validation vulnerability in Opera Browser Opera allows remote attackers to cause a denial of service (application crash) via a web page that contains a large number of nested marquee tags, a related issue to CVE-2006-2723. | 4.3 |
2007-01-09 | CVE-2007-0127 | Code Injection vulnerability in Opera Browser The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call. | 9.3 |
2006-07-06 | CVE-2006-3353 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Opera Browser Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties. | 5.0 |
2006-06-30 | CVE-2006-3331 | Unspecified vulnerability in Opera Browser Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks. | 5.0 |