Vulnerabilities > Opera > Opera Browser > 9.21
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-12-24 | CVE-2007-6524 | Information Exposure vulnerability in Opera Browser Opera before 9.25 allows remote attackers to obtain potentially sensitive memory contents via a crafted bitmap (BMP) file, as demonstrated using a CANVAS element and JavaScript in an HTML document for copying these contents from 9.50 beta, a related issue to CVE-2008-0420. | 7.8 |
2007-12-24 | CVE-2007-6523 | Resource Management Errors vulnerability in Opera Browser Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before 9.25 allows remote attackers to cause a denial of service (CPU consumption) via a crafted bitmap (BMP) file that triggers a large number of calculations and checks. | 7.8 |
2007-12-24 | CVE-2007-6522 | Cross-Site Scripting vulnerability in Opera Browser The rich text editing functionality in Opera before 9.25 allows remote attackers to conduct cross-domain scripting attacks by using designMode to modify contents of pages in other domains. | 4.3 |
2007-12-24 | CVE-2007-6521 | Cryptographic Issues vulnerability in Opera Browser Unspecified vulnerability in Opera before 9.25 allows remote attackers to execute arbitrary code via crafted TLS certificates. | 10.0 |
2007-12-24 | CVE-2007-6520 | Cross-Site Scripting vulnerability in Opera Browser Opera before 9.25 allows remote attackers to conduct cross-domain scripting attacks via unknown vectors related to plug-ins. | 4.3 |
2007-10-18 | CVE-2007-5541 | Improper Input Validation vulnerability in Opera Browser Unspecified vulnerability in Opera before 9.24, when using an "external" newsgroup or e-mail client, allows remote attackers to execute arbitrary commands via unknown vectors. | 9.3 |
2007-10-18 | CVE-2007-5540 | Improper Input Validation vulnerability in Opera Browser Unspecified vulnerability in Opera before 9.24 allows remote attackers to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors. | 7.5 |
2007-10-18 | CVE-2007-5476 | Unspecified vulnerability in Adobe Flash Player On Opera Browser For Mac OSX Unspecified vulnerability in Adobe Flash Player 9.0.47.0 and earlier, when running on Opera before 9.24 on Mac OS X, has unknown "Highly Severe" impact and unknown attack vectors. | 10.0 |
2007-09-18 | CVE-2007-4944 | Information Disclosure vulnerability in Opera Web Browser The canvas.createPattern function in Opera 9.x before 9.22 for Linux, FreeBSD, and Solaris does not clear memory before using it to process a new pattern, which allows remote attackers to obtain sensitive information (memory contents) via JavaScript. | 5.0 |
2007-08-15 | CVE-2007-4367 | Release of Invalid Pointer or Reference vulnerability in Opera Browser Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer." | 9.3 |