Lucene search

[email protected]CVE-2012-1926

HistoryMar 28, 2012 - 3:22 a.m.

CVE-2012-1926

2012-03-2803:22:10

CWE-200

[email protected]

web.nvd.nist.gov

opera

same origin policy

cve-2012-1926

security vulnerability

cross-domain frames

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.2

Confidence

High

EPSS

0.009

Percentile

82.4%

JSON

Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to unintended read access to history.state information.

Affected configurations

NVD

Node

operaopera_browserRange≤11.61

operaopera_browserMatch5.0

operaopera_browserMatch5.0beta2

operaopera_browserMatch5.0beta3

operaopera_browserMatch5.0beta4

operaopera_browserMatch5.0beta5

operaopera_browserMatch5.0beta6

operaopera_browserMatch5.0beta7

operaopera_browserMatch5.0beta8

operaopera_browserMatch5.02

operaopera_browserMatch5.10

operaopera_browserMatch5.11

operaopera_browserMatch5.12

operaopera_browserMatch6.0

operaopera_browserMatch6.0beta1

operaopera_browserMatch6.0beta2

operaopera_browserMatch6.0beta3

operaopera_browserMatch6.0tp1

operaopera_browserMatch6.0tp2

operaopera_browserMatch6.0tp3

operaopera_browserMatch6.1

operaopera_browserMatch6.01

operaopera_browserMatch6.1beta1

operaopera_browserMatch6.02

operaopera_browserMatch6.03

operaopera_browserMatch6.04

operaopera_browserMatch6.05

operaopera_browserMatch6.06

operaopera_browserMatch6.11

operaopera_browserMatch6.12

operaopera_browserMatch7.0

operaopera_browserMatch7.0beta1

operaopera_browserMatch7.0beta1_v2

operaopera_browserMatch7.0beta2

operaopera_browserMatch7.01

operaopera_browserMatch7.02

operaopera_browserMatch7.03

operaopera_browserMatch7.10

operaopera_browserMatch7.10beta1

operaopera_browserMatch7.11

operaopera_browserMatch7.11beta2

operaopera_browserMatch7.20

operaopera_browserMatch7.20beta7

operaopera_browserMatch7.21

operaopera_browserMatch7.22

operaopera_browserMatch7.23

operaopera_browserMatch7.50

operaopera_browserMatch7.50beta1

operaopera_browserMatch7.51

operaopera_browserMatch7.52

operaopera_browserMatch7.53

operaopera_browserMatch7.54

operaopera_browserMatch7.54update1

operaopera_browserMatch7.54update2

operaopera_browserMatch8.0

operaopera_browserMatch8.0beta1

operaopera_browserMatch8.0beta2

operaopera_browserMatch8.0beta3

operaopera_browserMatch8.01

operaopera_browserMatch8.02

operaopera_browserMatch8.50

operaopera_browserMatch8.51

operaopera_browserMatch8.52

operaopera_browserMatch8.53

operaopera_browserMatch8.54

operaopera_browserMatch9.0

operaopera_browserMatch9.0beta1

operaopera_browserMatch9.0beta2

operaopera_browserMatch9.01

operaopera_browserMatch9.02

operaopera_browserMatch9.10

operaopera_browserMatch9.20

operaopera_browserMatch9.20beta1

operaopera_browserMatch9.21

operaopera_browserMatch9.22

operaopera_browserMatch9.23

operaopera_browserMatch9.24

operaopera_browserMatch9.25

operaopera_browserMatch9.26

operaopera_browserMatch9.27

operaopera_browserMatch9.50

operaopera_browserMatch9.50beta1

operaopera_browserMatch9.50beta2

operaopera_browserMatch9.51

operaopera_browserMatch9.52

operaopera_browserMatch9.60

operaopera_browserMatch9.60beta1

operaopera_browserMatch9.61

operaopera_browserMatch9.62

operaopera_browserMatch9.63

operaopera_browserMatch9.64

operaopera_browserMatch10.00

operaopera_browserMatch10.00beta1

operaopera_browserMatch10.00beta2

operaopera_browserMatch10.00beta3

operaopera_browserMatch10.01

operaopera_browserMatch10.10

operaopera_browserMatch10.10beta1

operaopera_browserMatch10.11

operaopera_browserMatch10.50

operaopera_browserMatch10.50beta1

operaopera_browserMatch10.50beta2

operaopera_browserMatch10.51

operaopera_browserMatch10.52

operaopera_browserMatch10.52beta1

operaopera_browserMatch10.52beta2

operaopera_browserMatch10.53

operaopera_browserMatch10.53beta1

operaopera_browserMatch10.54

operaopera_browserMatch10.60

operaopera_browserMatch10.60beta1

operaopera_browserMatch10.61

operaopera_browserMatch10.62

operaopera_browserMatch10.63

operaopera_browserMatch11.00

operaopera_browserMatch11.00beta

operaopera_browserMatch11.01

operaopera_browserMatch11.10

operaopera_browserMatch11.10beta

operaopera_browserMatch11.11

operaopera_browserMatch11.50

operaopera_browserMatch11.50beta

operaopera_browserMatch11.51

operaopera_browserMatch11.52

operaopera_browserMatch11.60

operaopera_browserMatch11.60beta

VendorProductVersionCPE
operaopera_browser7.0cpe:/a:opera:opera_browser:7.0:::
operaopera_browser6.06cpe:/a:opera:opera_browser:6.06:::
operaopera_browser9.50cpe:/a:opera:opera_browser:9.50:::
operaopera_browser9.01cpe:/a:opera:opera_browser:9.01:::
operaopera_browser7.51cpe:/a:opera:opera_browser:7.51:::
operaopera_browser8.0cpe:/a:opera:opera_browser:8.0:beta3::
operaopera_browser7.21cpe:/a:opera:opera_browser:7.21:::
operaopera_browser10.00cpe:/a:opera:opera_browser:10.00:::
operaopera_browser9.24cpe:/a:opera:opera_browser:9.24:::
operaopera_browser7.0cpe:/a:opera:opera_browser:7.0:beta1_v2::

Vendor	Product	Version	CPE
opera	opera_browser	7.0	cpe:/a:opera:opera_browser:7.0:::
opera	opera_browser	6.06	cpe:/a:opera:opera_browser:6.06:::
opera	opera_browser	9.50	cpe:/a:opera:opera_browser:9.50:::
opera	opera_browser	9.01	cpe:/a:opera:opera_browser:9.01:::
opera	opera_browser	7.51	cpe:/a:opera:opera_browser:7.51:::
opera	opera_browser	8.0	cpe:/a:opera:opera_browser:8.0:beta3::
opera	opera_browser	7.21	cpe:/a:opera:opera_browser:7.21:::
opera	opera_browser	10.00	cpe:/a:opera:opera_browser:10.00:::
opera	opera_browser	9.24	cpe:/a:opera:opera_browser:9.24:::
opera	opera_browser	7.0	cpe:/a:opera:opera_browser:7.0:beta1_v2::