CVE-2010-2658

Name of the Vulnerable Software and Affected Versions Opera versions prior to 10.60

Description The issue allows user-assisted remote attackers to trigger the uploading of arbitrary files via a crafted web site, due to improper restriction of interaction between plug-ins, file inputs, and the clipboard. This can be exploited when a user is tricked into pasting clipboard content into a form on a specially crafted web site, and the clipboard contains a string that specifies a path to a local file.

Recommendations For Opera versions prior to 10.60, update to version 10.60 or later to resolve the issue. As a temporary workaround, consider avoiding the use of clipboard content in file upload forms to minimize the risk of exploitation. Restrict access to sensitive local files to prevent unintentional uploads.