CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
Percentile
92.0%
The remote host is running the Opera web browser.
Versions of Opera earlier than 10.61 are potentially affected by multiple vulnerabilities :
A heap overflow when performing painting operations on an HTML5 canvas can result in execution of arbitrary code, (KB 966)
An issue with tab focus is open to an attack where it is used to obscure a download dialog that is in another tab. The user can be tricked into clicking buttons in the dialog, resulting in the downloaded file being executed. (KB 967)
Certain types of content concerning the news feed preview do not have their scripts removed properly, possibly resulting in subscription of feeds without the userβs consent. (KB 968)
Loading an animated PNG image may cause high CPU usage with no response from the browser. (CVE-2010-3021)
A memory corruption issue exists when handling an html page with a very large SIZE parameter in the SELECT tag. (CVE-2011-1824)
Binary data 5626.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2576
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3019
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3020
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3021
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1824
secunia.com/secunia_research/2010-110
www.opera.com/docs/changelogs/windows/1061
www.opera.com/support/kb/view/966
www.opera.com/support/kb/view/967
www.opera.com/support/kb/view/968
www.toucan-system.com/advisories/tssa-2011-02.txt