Lucene search
MitreCVE-2010-4046HistoryOct 21, 2010 - 7:00 p.m.
CVE-2010-4046
2010-10-2119:00:05
CWE-200
mitre
web.nvd.nist.gov
32
cve-2010-4046
opera
video content
origin verification
vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.007
Percentile
79.8%
Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content.
Affected configurations
Node
operaopera_browserRange≤10.62
ORoperaopera_browserMatch5.0
ORoperaopera_browserMatch5.0beta2
ORoperaopera_browserMatch5.0beta3
ORoperaopera_browserMatch5.0beta4
ORoperaopera_browserMatch5.0beta5
ORoperaopera_browserMatch5.0beta6
ORoperaopera_browserMatch5.0beta7
ORoperaopera_browserMatch5.0beta8
ORoperaopera_browserMatch5.02
ORoperaopera_browserMatch5.10
ORoperaopera_browserMatch5.11
ORoperaopera_browserMatch5.12
ORoperaopera_browserMatch6.0
ORoperaopera_browserMatch6.0beta1
ORoperaopera_browserMatch6.0beta2
ORoperaopera_browserMatch6.0tp1
ORoperaopera_browserMatch6.0tp2
ORoperaopera_browserMatch6.0tp3
ORoperaopera_browserMatch6.1
ORoperaopera_browserMatch6.01
ORoperaopera_browserMatch6.1beta1
ORoperaopera_browserMatch6.02
ORoperaopera_browserMatch6.03
ORoperaopera_browserMatch6.04
ORoperaopera_browserMatch6.05
ORoperaopera_browserMatch6.06
ORoperaopera_browserMatch6.11
ORoperaopera_browserMatch6.12
ORoperaopera_browserMatch7.0
ORoperaopera_browserMatch7.0beta1
ORoperaopera_browserMatch7.0beta1_v2
ORoperaopera_browserMatch7.0beta2
ORoperaopera_browserMatch7.01
ORoperaopera_browserMatch7.02
ORoperaopera_browserMatch7.03
ORoperaopera_browserMatch7.10
ORoperaopera_browserMatch7.10beta1
ORoperaopera_browserMatch7.11
ORoperaopera_browserMatch7.11beta2
ORoperaopera_browserMatch7.20
ORoperaopera_browserMatch7.20beta7
ORoperaopera_browserMatch7.21
ORoperaopera_browserMatch7.22
ORoperaopera_browserMatch7.23
ORoperaopera_browserMatch7.50
ORoperaopera_browserMatch7.50beta1
ORoperaopera_browserMatch7.51
ORoperaopera_browserMatch7.52
ORoperaopera_browserMatch7.53
ORoperaopera_browserMatch7.54
ORoperaopera_browserMatch7.54update1
ORoperaopera_browserMatch7.54update2
ORoperaopera_browserMatch7.60
ORoperaopera_browserMatch8.0
ORoperaopera_browserMatch8.0beta1
ORoperaopera_browserMatch8.0beta2
ORoperaopera_browserMatch8.0beta3
ORoperaopera_browserMatch8.01
ORoperaopera_browserMatch8.02
ORoperaopera_browserMatch8.50
ORoperaopera_browserMatch8.51
ORoperaopera_browserMatch8.52
ORoperaopera_browserMatch8.53
ORoperaopera_browserMatch8.54
ORoperaopera_browserMatch9.0
ORoperaopera_browserMatch9.0beta1
ORoperaopera_browserMatch9.0beta2
ORoperaopera_browserMatch9.01
ORoperaopera_browserMatch9.02
ORoperaopera_browserMatch9.10
ORoperaopera_browserMatch9.12
ORoperaopera_browserMatch9.20
ORoperaopera_browserMatch9.20beta1
ORoperaopera_browserMatch9.21
ORoperaopera_browserMatch9.22
ORoperaopera_browserMatch9.23
ORoperaopera_browserMatch9.24
ORoperaopera_browserMatch9.25
ORoperaopera_browserMatch9.26
ORoperaopera_browserMatch9.27
ORoperaopera_browserMatch9.50
ORoperaopera_browserMatch9.50beta1
ORoperaopera_browserMatch9.50beta2
ORoperaopera_browserMatch9.51
ORoperaopera_browserMatch9.52
ORoperaopera_browserMatch9.60
ORoperaopera_browserMatch9.60beta1
ORoperaopera_browserMatch9.61
ORoperaopera_browserMatch9.62
ORoperaopera_browserMatch9.63
ORoperaopera_browserMatch9.64
ORoperaopera_browserMatch10.00
ORoperaopera_browserMatch10.00beta1
ORoperaopera_browserMatch10.00beta2
ORoperaopera_browserMatch10.00beta3
ORoperaopera_browserMatch10.01
ORoperaopera_browserMatch10.10
ORoperaopera_browserMatch10.10beta1
ORoperaopera_browserMatch10.50
ORoperaopera_browserMatch10.50beta1
ORoperaopera_browserMatch10.50beta2
ORoperaopera_browserMatch10.51
ORoperaopera_browserMatch10.52
ORoperaopera_browserMatch10.53
ORoperaopera_browserMatch10.53b
ORoperaopera_browserMatch10.54
ORoperaopera_browserMatch10.60
ORoperaopera_browserMatch10.60beta1
ORoperaopera_browserMatch10.61
| Vendor | Product | Version | CPE |
|---|---|---|---|
| opera | opera_browser | 10.00 | cpe:/a:opera:opera_browser:10.00:beta1:: |
| opera | opera_browser | 10.53 | cpe:/a:opera:opera_browser:10.53:b:: |
| opera | opera_browser | 7.23 | cpe:/a:opera:opera_browser:7.23::: |
| opera | opera_browser | 7.54 | cpe:/a:opera:opera_browser:7.54:update2:: |
| opera | opera_browser | 6.12 | cpe:/a:opera:opera_browser:6.12::: |
| opera | opera_browser | 6.01 | cpe:/a:opera:opera_browser:6.01::: |
| opera | opera_browser | 9.22 | cpe:/a:opera:opera_browser:9.22::: |
| opera | opera_browser | 6.03 | cpe:/a:opera:opera_browser:6.03::: |
| opera | opera_browser | 6.0 | cpe:/a:opera:opera_browser:6.0:tp3:: |
| opera | opera_browser | 9.60 | cpe:/a:opera:opera_browser:9.60:beta1:: |
References
secunia.com/advisories/41740
securitytracker.com/id?1024570
www.opera.com/docs/changelogs/mac/1063/
www.opera.com/docs/changelogs/unix/1063/
www.opera.com/docs/changelogs/windows/1063/
www.opera.com/support/kb/view/974/
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11937
technet.microsoft.com/library/security/msvr11-002
Related
cvelist
cvelist
CVE-2010-4046
2010-10-21 18:12:00
prion
prion
Information disclosure
2010-10-21 19:00:00
nvd
nvd
CVE-2010-4046
2010-10-21 19:00:05
msvr
msvr
openvas
openvas
Opera Browser Multiple Vulnerabilities (Oct 2010) - Linux
2012-04-05 00:00:00
Opera Browser Multiple Vulnerabilities October-10 (Mac OS X)
2012-04-19 00:00:00
Opera Browser Multiple Vulnerabilities (Oct 2010) - Windows
2010-10-28 00:00:00
nessus
nessus
Opera < 10.63 Multiple Vulnerabilities
2010-10-13 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.007
Percentile
79.8%
Related for CVE-2010-4046