CVE-2004-1489

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2004-1489
Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:P/I:N/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html Exploit
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml Patch Third Party Advisory
http://www.opera.com/linux/changelogs/754u1/ Broken Link
http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html Exploit
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml Patch Third Party Advisory
http://www.opera.com/linux/changelogs/754u1/ Broken Link
Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
History

20 Nov 2024, 23:51

Type Values Removed Values Added
References () http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html - Exploit () http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html - Exploit
References () http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory () http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory
References () http://www.opera.com/linux/changelogs/754u1/ - Broken Link () http://www.opera.com/linux/changelogs/754u1/ - Broken Link

28 Feb 2022, 18:04

Type Values Removed Values Added
CWE NVD-CWE-Other CWE-668
CPE cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.10:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.51:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.12:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.23:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.21:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.22:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.10:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50b1:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.1.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.3:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.12:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.1.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.4:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11b:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.52:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.53:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0:*:mac:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.2:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.54:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11j:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.5:*:win32:*:*:*:*:*		 cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
References (CONFIRM) http://www.opera.com/linux/changelogs/754u1/ - (CONFIRM) http://www.opera.com/linux/changelogs/754u1/ - Broken Link
References (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory
Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:51

NVD link : CVE-2004-1489

Mitre link : CVE-2004-1489

CVE.ORG link : CVE-2004-1489

JSON object : View

Products Affected

opera

  • opera_browser
CWE
CWE-668

Exposure of Resource to Wrong Sphere