Vulnerabilities > Opera > Opera Browser > 8.00
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-22 | CVE-2007-2809 | Classic Buffer Overflow vulnerability in Opera Browser Buffer overflow in the transfer manager in Opera before 9.21 for Windows allows user-assisted remote attackers to execute arbitrary code via a crafted torrent file. | 9.3 |
2007-01-09 | CVE-2007-0127 | Code Injection vulnerability in Opera Browser The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call. | 9.3 |
2006-07-06 | CVE-2006-3353 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Opera Browser Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties. | 5.0 |
2006-06-30 | CVE-2006-3331 | Unspecified vulnerability in Opera Browser Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks. | 5.0 |
2006-06-23 | CVE-2006-3198 | Integer Overflow or Wraparound vulnerability in Opera Browser Integer overflow in Opera 8.54 and earlier allows remote attackers to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended. | 7.5 |
2006-04-19 | CVE-2006-1834 | Numeric Errors vulnerability in Opera Browser Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. | 5.1 |
2005-12-31 | CVE-2005-4718 | Unspecified vulnerability in Opera Browser Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute. | 5.0 |
2005-12-13 | CVE-2005-4210 | Unspecified vulnerability in Opera Browser Opera before 8.51, when running on Windows with Input Method Editor (IME) installed, allows remote attackers to cause a denial of service (persistent application crash) by bookmarking a site with a long title. | 5.0 |
2005-11-22 | CVE-2005-3750 | Injection vulnerability in Opera Browser Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera. | 7.5 |
2005-09-22 | CVE-2005-3041 | Unspecified vulnerability in Opera Browser Unspecified "drag-and-drop vulnerability" in Opera Web Browser before 8.50 on Windows allows "unintentional file uploads." | 5.0 |