Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3007

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2005-3007
Last Modified 07 Mar 2011 09:25:25
Published 21 Sep 2005 04:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-3007

Summary

Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content.

Vulnerable Systems

Application

  • Opera Software Opera 8.02


References

MISC - http://secunia.com/secunia_research/2005-42/advisory/

SECUNIA - 16645

VUPEN - ADV-2005-1789

XF - opera-filename-spoofing(22337)

BID - 14880

SUSE - SuSE-SA:2005:057

OSVDB - 19509

CONFIRM - http://www.opera.com/docs/changelogs/windows/850/

CONFIRM - http://www.opera.com/docs/changelogs/linux/850/

SUSE - SUSE-SA:2005:057

BUGTRAQ - 20050920 Secunia Research: Opera Mail Client Attachment Spoofing and Script Insertion


Last Updated: 27 May 2016 10:40:42