CVE-2004-1489

Name of the Vulnerable Software and Affected Versions Opera versions 7.54 and earlier

Description The issue allows remote attackers to gain sensitive information, such as user names and the installation directory, due to improper limitation of an applet's access to internal Java packages from Sun. This can lead to an unauthorized information disclosure when an attacker uses the sun.security.krb5.Credentials class to retrieve the name of the currently logged in user and parse the home directory from the information provided by the thrown java.security.AccessControlException, resulting in a loss of confidentiality.

Recommendations For Opera versions 7.54 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.