Vulnerabilities > Opera
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-09-06 | CVE-2011-3388 | Information Exposure vulnerability in Opera Browser Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field and page information dialog to contain security information based on the trusted site, instead of the insecure site. | 4.3 |
| 2011-08-09 | CVE-2008-7297 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Transport Security (HSTS) includeSubDomains feature, aka a "cookie forcing" issue. | 5.8 |
| 2011-07-01 | CVE-2011-2641 | Resource Management Errors vulnerability in Opera Browser 11.11 Opera 11.11 allows remote attackers to cause a denial of service (application crash) by setting the FACE attribute of a FONT element within an IFRAME element after changing the SRC attribute of this IFRAME element to an about:blank value. | 5.0 |
| 2011-07-01 | CVE-2011-2640 | Resource Management Errors vulnerability in Opera Browser Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via an HTML document that has an empty parameter value for an embedded Java applet. | 5.0 |
| 2011-07-01 | CVE-2011-2639 | Resource Management Errors vulnerability in Opera Browser Opera before 11.10 does not properly handle hidden animated GIF images, which allows remote attackers to cause a denial of service (CPU consumption) via an image file that triggers continual repaints. | 5.0 |
| 2011-07-01 | CVE-2011-2638 | Unspecified vulnerability in Opera Browser Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by games on zylom.com. | 5.0 |
| 2011-07-01 | CVE-2011-2637 | Unspecified vulnerability in Opera Browser Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by futura-sciences.com, seoptimise.com, and mitosyfraudes.org. | 5.0 |
| 2011-07-01 | CVE-2011-2636 | Unspecified vulnerability in Opera Browser Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by a certain Tomato Firmware page. | 5.0 |
| 2011-07-01 | CVE-2011-2635 | Resource Management Errors vulnerability in Opera Browser The Cascading Style Sheets (CSS) implementation in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via vectors involving use of the :hover pseudo-class, in conjunction with transforms, for a floated element. | 5.0 |
| 2011-07-01 | CVE-2011-2634 | Improper Input Validation vulnerability in Opera Browser Opera before 11.10 allows remote attackers to hijack (1) searches and (2) customizations via unspecified third party applications. | 5.0 |