PT-2012-4816 · Opera · Opera

Published

2012-06-14

Updated

2017-08-29

CVE-2012-3567

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Opera versions prior to 12.00 Beta

Description The issue allows remote attackers to cause a denial of service, resulting in memory consumption or application hang, by utilizing an IFRAME element with the src="#" syntax to embed a parent document.

Recommendations For Opera versions prior to 12.00 Beta, update to version 12.00 Beta or later to resolve the issue. As a temporary workaround, consider restricting the use of IFRAME elements with the src="#" syntax to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2012-3567

Affected Products

Opera

PT-2012-4816 · Opera · Opera

CVE-2012-3567

Related Identifiers

Affected Products

References · 3