CVE-2004-1201

Opera 7.54 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=full-disclosure&m=110141347502530&w=2	Mailing List
http://marc.info/?l=full-disclosure&m=110144136213993&w=2	Mailing List
http://www.securityfocus.com/bid/11762	Broken Link Exploit Third Party Advisory VDB Entry Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18282	Third Party Advisory VDB Entry
http://marc.info/?l=full-disclosure&m=110141347502530&w=2	Mailing List
http://marc.info/?l=full-disclosure&m=110144136213993&w=2	Mailing List
http://www.securityfocus.com/bid/11762	Broken Link Exploit Third Party Advisory VDB Entry Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18282	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:50

Type	Values Removed	Values Added
References	~~() http://marc.info/?l=full-disclosure&m=110141347502530&w=2 - Mailing List~~	() http://marc.info/?l=full-disclosure&m=110141347502530&w=2 - Mailing List
References	~~() http://marc.info/?l=full-disclosure&m=110144136213993&w=2 - Mailing List~~	() http://marc.info/?l=full-disclosure&m=110144136213993&w=2 - Mailing List
References	~~() http://www.securityfocus.com/bid/11762 - Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory~~	() http://www.securityfocus.com/bid/11762 - Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/18282 - Third Party Advisory, VDB Entry~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/18282 - Third Party Advisory, VDB Entry

28 Feb 2022, 17:37

Type	Values Removed	Values Added
CWE	~~NVD-CWE-Other~~	CWE-400
CPE	cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.3::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.10::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.0.1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.51:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.6::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.1:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.23:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.20:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.1::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.11:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.21:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.22:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.10:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.6:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.3::linux::::: cpe:2.3:a:opera_software:opera_web_browser:5.1.1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.0.3::win32::::: cpe:2.3:a:opera_software:opera_web_browser:5.12:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:5.1.0::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.4::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.11b:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.52:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.53:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.0::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.54:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.0::mac::::: cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.50:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.0::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.2::linux::::: cpe:2.3:a:opera_software:opera_web_browser:5.12::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.11j:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.5::win32:::::	cpe:2.3:a:opera:opera_browser::::::::
References	~~(XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/18282 -~~	(XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/18282 - Third Party Advisory, VDB Entry
References	~~(FULLDISC) http://marc.info/?l=full-disclosure&m=110144136213993&w=2 -~~	(FULLDISC) http://marc.info/?l=full-disclosure&m=110144136213993&w=2 - Mailing List
References	~~(BID) http://www.securityfocus.com/bid/11762 - Exploit, Vendor Advisory~~	(BID) http://www.securityfocus.com/bid/11762 - Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory
References	~~(FULLDISC) http://marc.info/?l=full-disclosure&m=110141347502530&w=2 -~~	(FULLDISC) http://marc.info/?l=full-disclosure&m=110141347502530&w=2 - Mailing List

Information

Published : 2005-01-10 05:00

Updated : 2024-11-20 23:50

NVD link : CVE-2004-1201

Mitre link : CVE-2004-1201

CVE.ORG link : CVE-2004-1201

JSON object : View

Products Affected

opera

opera_browser

CWE

CWE-400

Uncontrolled Resource Consumption

5.0 /10