CVE-2004-1490

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2004-1490
Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://secunia.com/advisories/12981 Broken Link Patch
http://secunia.com/secunia_research/2004-19/advisory/ Broken Link Patch
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml Patch Third Party Advisory
http://www.opera.com/linux/changelogs/754u1/ Broken Link
http://www.securityfocus.com/bid/11883 Broken Link Patch Third Party Advisory VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 Third Party Advisory VDB Entry
http://secunia.com/advisories/12981 Broken Link Patch
http://secunia.com/secunia_research/2004-19/advisory/ Broken Link Patch
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml Patch Third Party Advisory
http://www.opera.com/linux/changelogs/754u1/ Broken Link
http://www.securityfocus.com/bid/11883 Broken Link Patch Third Party Advisory VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
History

20 Nov 2024, 23:51

Type Values Removed Values Added
References () http://secunia.com/advisories/12981 - Broken Link, Patch () http://secunia.com/advisories/12981 - Broken Link, Patch
References () http://secunia.com/secunia_research/2004-19/advisory/ - Broken Link, Patch () http://secunia.com/secunia_research/2004-19/advisory/ - Broken Link, Patch
References () http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory () http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory
References () http://www.opera.com/linux/changelogs/754u1/ - Broken Link () http://www.opera.com/linux/changelogs/754u1/ - Broken Link
References () http://www.securityfocus.com/bid/11883 - Broken Link, Patch, Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/11883 - Broken Link, Patch, Third Party Advisory, VDB Entry
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 - Third Party Advisory, VDB Entry () https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 - Third Party Advisory, VDB Entry

28 Feb 2022, 18:15

Type Values Removed Values Added
References (SECUNIA) http://secunia.com/advisories/12981 - Patch (SECUNIA) http://secunia.com/advisories/12981 - Broken Link, Patch
References (CONFIRM) http://www.opera.com/linux/changelogs/754u1/ - (CONFIRM) http://www.opera.com/linux/changelogs/754u1/ - Broken Link
References (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 - (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/18423 - Third Party Advisory, VDB Entry
References (BID) http://www.securityfocus.com/bid/11883 - Patch (BID) http://www.securityfocus.com/bid/11883 - Broken Link, Patch, Third Party Advisory, VDB Entry
References (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory
References (MISC) http://secunia.com/secunia_research/2004-19/advisory/ - Patch (MISC) http://secunia.com/secunia_research/2004-19/advisory/ - Broken Link, Patch
CPE cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.51:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.10:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.2:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.12:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.23:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.21:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.22:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.10:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50b1:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.1.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.3:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.12:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.1.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11b:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.52:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.53:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0:*:linux:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:5.0:*:mac:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.4:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.54:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11j:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:6.0.5:*:win32:*:*:*:*:*		 cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
CWE NVD-CWE-Other NVD-CWE-noinfo
Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:51

NVD link : CVE-2004-1490

Mitre link : CVE-2004-1490

CVE.ORG link : CVE-2004-1490

JSON object : View

Products Affected

opera

  • opera_browser
CWE
NVD-CWE-noinfo