CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
79.8%
Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content.
Vendor | Product | Version | CPE |
---|---|---|---|
opera | opera_browser | 10.00 | cpe:/a:opera:opera_browser:10.00:beta1:: |
opera | opera_browser | 10.53 | cpe:/a:opera:opera_browser:10.53:b:: |
opera | opera_browser | 7.23 | cpe:/a:opera:opera_browser:7.23::: |
opera | opera_browser | 7.54 | cpe:/a:opera:opera_browser:7.54:update2:: |
opera | opera_browser | 6.12 | cpe:/a:opera:opera_browser:6.12::: |
opera | opera_browser | 6.01 | cpe:/a:opera:opera_browser:6.01::: |
opera | opera_browser | 9.22 | cpe:/a:opera:opera_browser:9.22::: |
opera | opera_browser | 6.03 | cpe:/a:opera:opera_browser:6.03::: |
opera | opera_browser | 6.0 | cpe:/a:opera:opera_browser:6.0:tp3:: |
opera | opera_browser | 9.60 | cpe:/a:opera:opera_browser:9.60:beta1:: |
secunia.com/advisories/41740
securitytracker.com/id?1024570
www.opera.com/docs/changelogs/mac/1063/
www.opera.com/docs/changelogs/unix/1063/
www.opera.com/docs/changelogs/windows/1063/
www.opera.com/support/kb/view/974/
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11937
technet.microsoft.com/library/security/msvr11-002