PT-2005-1516 · Opera · Opera

Michael Holzt

Published

2005-01-12

Updated

2022-02-28

CVE-2005-0456

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Opera versions prior to 7.55

Description The issue is related to the improper validation of base64 encoded binary data in a data: (RFC 2397) URL. This can cause the URL to be obscured in a download dialog, potentially allowing remote attackers to trick users into executing arbitrary code.

Recommendations For Opera versions prior to 7.55, update to version 7.55 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0456

Affected Products

Opera

PT-2005-1516 · Opera · Opera

CVE-2005-0456

Related Identifiers

Affected Products

References · 8