Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2414

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2002-2414
Last Modified 05 Sep 2008 04:33:09
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2002-2414

Summary

Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash).

Vulnerable Systems

Application

  • Opera Software Opera 6.0.3

  • Squid 2.4


References

BID - 6218

XF - opera-squid-https-dos(10673)

FULLDISC - 20021120 Opera 6.03/Linux crashes on HTTPS over Squid Proxy on a site


Last Updated: 27 May 2016 10:37:44