Vulnerabilities > Unix > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-01-02 | CVE-2012-6472 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configuration file, or (4) possibly gain privileges by modifying or overwriting a configuration file. | 4.6 |
| 2012-03-28 | CVE-2012-1931 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing. | 4.6 |
| 2012-03-28 | CVE-2012-1930 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files. | 4.6 |
| 2010-07-08 | CVE-2010-2665 | Cross-Site Scripting vulnerability in Opera Browser Cross-site scripting (XSS) vulnerability in Opera before 10.54 on Windows and Mac OS X, and before 10.11 on UNIX platforms, allows remote attackers to inject arbitrary web script or HTML via a data: URI, related to incorrect detection of the "opening site." | 4.3 |
| 2010-07-08 | CVE-2010-2661 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations. | 4.3 |
| 2010-07-08 | CVE-2010-2660 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attackers to spoof IDN domains via unspecified choices of characters. | 4.3 |
| 2010-07-08 | CVE-2010-2659 | Information Exposure vulnerability in Opera Browser Opera before 10.50 on Windows, before 10.52 on Mac OS X, and before 10.60 on UNIX platforms makes widget properties accessible to third-party domains, which allows remote attackers to obtain potentially sensitive information via a crafted web site. | 4.3 |
| 2010-06-30 | CVE-2010-2203 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Adobe Acrobat and Acrobat Reader Adobe Reader and Acrobat 9.x before 9.3.3 on UNIX allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | 6.8 |
| 2010-01-13 | CVE-2009-3957 | Denial of Service vulnerability in Adobe Reader and Acrobat Null Pointer Dereference Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to cause a denial of service (NULL pointer dereference) via unspecified vectors. | 5.0 |
| 2009-06-22 | CVE-2009-2166 | Path Traversal vulnerability in Ocsinventory-Ng OCS Inventory NG 1.0/1.01/1.02 Absolute path traversal vulnerability in cvs.php in OCS Inventory NG before 1.02.1 on Unix allows remote attackers to read arbitrary files via a full pathname in the log parameter. | 5.0 |