Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Windows >> Opera web browser address bar spoofing weakness


Vulnerability Assessment Details

Opera web browser address bar spoofing weakness

Vulnerability Assessment Summary
Acertains the version of Opera.exe

Detailed Explanation for this Vulnerability Assessment

The remote host is using Opera - an alternative web browser.

This version of Opera is vulnerable to a security weakness
that may permit malicious web pages to spoof address bar information.

This is reportedly possible through malicious use of the
JavaScript 'unOnload' event handler when the browser
is redirected to another page.

This issue could be exploited to spoof the domain of a malicious web page,
potentially causing the victim user to trust the spoofed domain.

Solution : Install Opera 7.50 or newer.
Network Security Threat Level: High

Networks Security ID: 10337

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Maciejak

Cables, Connectors

NEW Juniper SRX100H J-SRX100H 1GB 8xFE Secure Gateway Firewall 83T5N Dell
$194.81
NEW Juniper SRX100H J-SRX100H 1GB 8xFE Secure Gateway Firewall 83T5N Dell pictureGenu LEI 12V 3.33A AC Adapter Power Supply For Juniper Networks SSG20 SSG-20-SH
$29.99
Genu LEI 12V 3.33A AC Adapter Power Supply For Juniper Networks SSG20 SSG-20-SH pictureJuniper Networks EX4200-24F 24SFP
$840.0
Juniper Networks EX4200-24F  24SFP pictureLot 2 Juniper Networks EX2200-24P-4G 750-026464 24-Port Gigabit POE Switch 4 SFP
$319.99
Lot 2 Juniper Networks EX2200-24P-4G 750-026464 24-Port Gigabit POE Switch 4 SFP picture


Discussions

No Discussions have been posted on this vulnerability.