PT-2009-5380 · Opera · Opera
Publicado
2009-09-02
·
Atualizado
2017-09-19
·
CVE-2009-3048
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
Opera versions prior to 10.00
Description:
The issue is related to the improper implementation of the "INPUT TYPE=file" functionality, which allows remote attackers to trick a user into uploading an unintended file via vectors involving a "dropped file."
Recommendations:
For versions prior to 10.00, update to version 10.00 or later to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Opera