SuSE Update For Opera SUSE-SA:2008:011 Network Vulnerability

Impact

remote code execution

Solution

Please Install the Updated Packages.

Insight

This is a version update for Opera to version 9.26 to fix: - CVE-2008-1080: Fixed an issue where simulated text inputs could trick users into uploading arbitrary files, as reported by Mozilla. - CVE-2008-1081: Image properties can no longer be used to execute scripts, as reported by Max Leonov. - CVE-2008-1082: Fixed an issue where the representation of DOM attribute values could allow cross site scripting, as reported by Arnaud.lb. For more information read http://www.opera.com/docs/changelogs/linux/926/

Affected

opera on SUSE LINUX 10.1, openSUSE 10.2, openSUSE 10.3

References

http://www.novell.com/linux/security/advisories/2008_11_opera.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1080, CVE-2008-1081, CVE-2008-1082
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SLES10: Security update for ClamAV
SLES10: Security update for clamav
SLES10: Security update for evolution-data-server
SLES10: Security update for libexif5
SLES10: Security update for bind

SuSE Update for opera SUSE-SA:2008:011

Take action and discover your vulnerabilities