PT-2010-4183 · Opera · Opera

Publicado

2010-07-07

·

Atualizado

2018-10-30

·

CVE-2010-2661

CVSS v2.0

4.3

Média

VetorAV:N/AC:M/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions Opera versions prior to 10.54 on Windows and Mac OS X Opera versions prior to 10.60 on UNIX platforms
Description The issue allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations, due to improper restriction of access to the full pathname of a file selected for upload.
Recommendations For Opera versions prior to 10.54 on Windows and Mac OS X, update to version 10.54 or later. For Opera versions prior to 10.60 on UNIX platforms, update to version 10.60 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2010-2661

Produtos afetados

Opera