CVE-2005-2273

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2005-2273
Opera 7.x and 8 before 8.01 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://secunia.com/advisories/15488 Not Applicable
http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ Not Applicable
http://secunia.com/secunia_research/2005-8/ Not Applicable
http://secunia.com/advisories/15488 Not Applicable
http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ Not Applicable
http://secunia.com/secunia_research/2005-8/ Not Applicable
Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
History

20 Nov 2024, 23:59

Type Values Removed Values Added
References () http://secunia.com/advisories/15488 - Not Applicable () http://secunia.com/advisories/15488 - Not Applicable
References () http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ - Not Applicable () http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ - Not Applicable
References () http://secunia.com/secunia_research/2005-8/ - Not Applicable () http://secunia.com/secunia_research/2005-8/ - Not Applicable

28 Feb 2022, 16:34

Type Values Removed Values Added
CWE NVD-CWE-Other NVD-CWE-noinfo
CPE cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:8.0_final_build_1095:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.51:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11b:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11j:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.23:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.52:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.11:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.21:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.2:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.53:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.22:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.10:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50b1:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.50:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.0.3:*:win32:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:7.54:*:*:*:*:*:*:*
cpe:2.3:a:opera_software:opera_web_browser:8_beta_3:*:*:*:*:*:*:*		 cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
References (MISC) http://secunia.com/secunia_research/2005-8/ - (MISC) http://secunia.com/secunia_research/2005-8/ - Not Applicable
References (SECUNIA) http://secunia.com/advisories/15488 - (SECUNIA) http://secunia.com/advisories/15488 - Not Applicable
References (MISC) http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ - Exploit (MISC) http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/ - Not Applicable
Information

Published : 2005-07-13 04:00

Updated : 2024-11-20 23:59

NVD link : CVE-2005-2273

Mitre link : CVE-2005-2273

CVE.ORG link : CVE-2005-2273

JSON object : View

Products Affected

opera

  • opera_browser
CWE
NVD-CWE-noinfo