CVE Vulnerability

CVE-2008-2716

Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://www.opera.com/docs/changelogs/linux/950/#security Broken Link Vendor Advisory
http://www.opera.com/docs/changelogs/windows/950/#security Broken Link Vendor Advisory
http://www.opera.com/support/search/view/885/ Broken Link Vendor Advisory
http://www.securityfocus.com/bid/29684 Broken Link Patch
http://secunia.com/advisories/30636 Broken Link
http://secunia.com/advisories/30682 Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.html Third Party Advisory
http://www.securitytracker.com/id?1020292 Broken Link Third Party Advisory
http://www.vupen.com/english/advisories/2008/1812 Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/43033 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
Information

Published : 2008-06-16 10:41

Updated : 2022-03-01 03:05

NVD link : CVE-2008-2716

Mitre link : CVE-2008-2716

Products Affected

Opera

Opera Browser

CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames