Family: Windows --> Category: infos
Opera remote location object cross-domain scripting vulnerability Vulnerability Scan
Vulnerability Scan Summary
Acertains the version of Opera.exe
Detailed Explanation for this Vulnerability Test
The remote host contains a web browser that is affected by
The version of Opera on the remote host fails to block write access to
the 'location' object. This could allow a user to create a specially
crafted URL to overwrite methods within the 'location' object that would
execute arbitrary code in a user's browser within the trust relationship
between the browser and the server, leading to a loss of confidentiality
See also :
Upgrade to Opera 7.54 or newer.
Low / CVSS Base Score : 2.3
Click HERE for more information and discussions on this network vulnerability scan.