Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5679

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-5679
Last Modified 20 Mar 2009 01:51:31
Published 19 Dec 2008 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5679

Summary

The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption.

Vulnerable Systems

Application

  • Opera

  • Opera 5..10

  • Opera 5.0

  • Opera 5.02

  • Opera 5.1

  • Opera 5.10

  • Opera 5.11

  • Opera 5.12

  • Opera 5.2

  • Opera 5.3

  • Opera 5.4

  • Opera 5.5

  • Opera 5.6

  • Opera 5.7

  • Opera 5.8

  • Opera 5.9

  • Opera 6

  • Opera 6.0

  • Opera 6.01

  • Opera 6.02

  • Opera 6.03

  • Opera 6.04

  • Opera 6.05

  • Opera 6.06

  • Opera 6.1

  • Opera 6.11

  • Opera 6.12

  • Opera 7

  • Opera 7.0

  • Opera 7.01

  • Opera 7.02

  • Opera 7.03

  • Opera 7.10

  • Opera 7.11

  • Opera 7.20

  • Opera 7.21

  • Opera 7.22

  • Opera 7.23

  • Opera 7.50

  • Opera 7.51

  • Opera 7.52

  • Opera 7.53

  • Opera 7.54

  • Opera 8.0

  • Opera 8.01

  • Opera 8.02

  • Opera 8.50

  • Opera 8.51

  • Opera 8.52

  • Opera 8.53

  • Opera 8.54

  • Opera 9.0

  • Opera 9.01

  • Opera 9.02

  • Opera 9.10

  • Opera 9.20

  • Opera 9.21

  • Opera 9.22

  • Opera 9.23

  • Opera 9.24

  • Opera 9.25

  • Opera 9.26

  • Opera 9.27

  • Opera 9.50

  • Opera 9.51

  • Opera 9.52

  • Opera 9.6

  • Opera 9.60

  • Opera 9.61

  • Opera 9.62


References

SECTRACK - 1021460

BUGTRAQ - 20081217 n.runs-SA-2008.010 - Opera HTML parsing Code Execution

CONFIRM - http://www.opera.com/support/kb/view/921/

CONFIRM - http://www.opera.com/docs/changelogs/linux/963/

MISC - http://www.nruns.com/security_advisory_opera_html_parsing_code_execution.php

SREASON - 4791

GENTOO - GLSA-200903-30

SECUNIA - 34294


Last Updated: 27 May 2016 10:48:53