Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4367

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2007-4367
Last Modified 07 Mar 2011 09:58:27
Published 15 Aug 2007 07:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4367

Summary

Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."

Vulnerable Systems

Application

  • Opera Software Opera Web Browser 9

  • Opera Software Opera Web Browser 9.01

  • Opera Software Opera Web Browser 9.02

  • Opera Software Opera Web Browser 9.10

  • Opera Software Opera Web Browser 9.20

  • Opera Software Opera Web Browser 9.21

  • Opera Software Opera Web Browser 9.22


References

SECUNIA - 26477

VUPEN - ADV-2007-2904

BID - 25331

CONFIRM - http://www.opera.com/support/search/view/865/

XF - opera-javascript-code-execution(36039)

SECTRACK - 1018572

GENTOO - GLSA-200708-17

SECUNIA - 26635

SECUNIA - 26545

SUSE - SUSE-SA:2007:050


Last Updated: 27 May 2016 10:45:50