CVE-2006-3198

Integer overflow in Opera 8.54 and earlier allows remote attackers to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/20787	Broken Link
http://secunia.com/advisories/20897	Broken Link
http://securityreason.com/securityalert/1133	Third Party Advisory
http://securitytracker.com/id?1016362	Broken Link Third Party Advisory VDB Entry
http://www.novell.com/linux/security/advisories/2006_38_opera.html	Broken Link
http://www.securityfocus.com/archive/1/438074/100/0/threaded	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/18594	Broken Link Third Party Advisory VDB Entry
http://www.vigilantminds.com/advi_detail.php?id=45	Broken Link Vendor Advisory
http://www.vupen.com/english/advisories/2006/2491	Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/27318	Third Party Advisory VDB Entry
http://secunia.com/advisories/20787	Broken Link
http://secunia.com/advisories/20897	Broken Link
http://securityreason.com/securityalert/1133	Third Party Advisory
http://securitytracker.com/id?1016362	Broken Link Third Party Advisory VDB Entry
http://www.novell.com/linux/security/advisories/2006_38_opera.html	Broken Link
http://www.securityfocus.com/archive/1/438074/100/0/threaded	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/18594	Broken Link Third Party Advisory VDB Entry
http://www.vigilantminds.com/advi_detail.php?id=45	Broken Link Vendor Advisory
http://www.vupen.com/english/advisories/2006/2491	Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/27318	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:13

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/20787 - Broken Link~~	() http://secunia.com/advisories/20787 - Broken Link
References	~~() http://secunia.com/advisories/20897 - Broken Link~~	() http://secunia.com/advisories/20897 - Broken Link
References	~~() http://securityreason.com/securityalert/1133 - Third Party Advisory~~	() http://securityreason.com/securityalert/1133 - Third Party Advisory
References	~~() http://securitytracker.com/id?1016362 - Broken Link, Third Party Advisory, VDB Entry~~	() http://securitytracker.com/id?1016362 - Broken Link, Third Party Advisory, VDB Entry
References	~~() http://www.novell.com/linux/security/advisories/2006_38_opera.html - Broken Link~~	() http://www.novell.com/linux/security/advisories/2006_38_opera.html - Broken Link
References	~~() http://www.securityfocus.com/archive/1/438074/100/0/threaded - Broken Link, Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/archive/1/438074/100/0/threaded - Broken Link, Third Party Advisory, VDB Entry
References	~~() http://www.securityfocus.com/bid/18594 - Broken Link, Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/18594 - Broken Link, Third Party Advisory, VDB Entry
References	~~() http://www.vigilantminds.com/advi_detail.php?id=45 - Broken Link, Vendor Advisory~~	() http://www.vigilantminds.com/advi_detail.php?id=45 - Broken Link, Vendor Advisory
References	~~() http://www.vupen.com/english/advisories/2006/2491 - Broken Link~~	() http://www.vupen.com/english/advisories/2006/2491 - Broken Link
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/27318 - Third Party Advisory, VDB Entry~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/27318 - Third Party Advisory, VDB Entry

28 Feb 2022, 16:08

Type	Values Removed	Values Added
References	~~(SECUNIA) http://secunia.com/advisories/20787 -~~	(SECUNIA) http://secunia.com/advisories/20787 - Broken Link
References	~~(MISC) http://www.vigilantminds.com/advi_detail.php?id=45 - Vendor Advisory~~	(MISC) http://www.vigilantminds.com/advi_detail.php?id=45 - Broken Link, Vendor Advisory
References	~~(SECTRACK) http://securitytracker.com/id?1016362 -~~	(SECTRACK) http://securitytracker.com/id?1016362 - Broken Link, Third Party Advisory, VDB Entry
References	~~(BUGTRAQ) http://www.securityfocus.com/archive/1/438074/100/0/threaded -~~	(BUGTRAQ) http://www.securityfocus.com/archive/1/438074/100/0/threaded - Broken Link, Third Party Advisory, VDB Entry
References	~~(BID) http://www.securityfocus.com/bid/18594 -~~	(BID) http://www.securityfocus.com/bid/18594 - Broken Link, Third Party Advisory, VDB Entry
References	~~(SECUNIA) http://secunia.com/advisories/20897 -~~	(SECUNIA) http://secunia.com/advisories/20897 - Broken Link
References	~~(SUSE) http://www.novell.com/linux/security/advisories/2006_38_opera.html -~~	(SUSE) http://www.novell.com/linux/security/advisories/2006_38_opera.html - Broken Link
References	~~(SREASON) http://securityreason.com/securityalert/1133 -~~	(SREASON) http://securityreason.com/securityalert/1133 - Third Party Advisory
References	~~(XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/27318 -~~	(XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/27318 - Third Party Advisory, VDB Entry
References	~~(VUPEN) http://www.vupen.com/english/advisories/2006/2491 -~~	(VUPEN) http://www.vupen.com/english/advisories/2006/2491 - Broken Link
CWE	~~NVD-CWE-Other~~	CWE-190
CPE	cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:8.54:::::::* cpe:2.3:a:opera_software:opera_web_browser:8.02:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.3::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.10::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.0.1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.51:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.12::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.6::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.20:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.23:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.1:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.1::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.11:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.21:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.22:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.10:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.6:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.3::linux::::: cpe:2.3:a:opera_software:opera_web_browser:8.50:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.0.3::win32::::: cpe:2.3:a:opera_software:opera_web_browser:8_beta_3:::::::* cpe:2.3:a:opera_software:opera_web_browser:8.51:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.12:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.4::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.11b:::::::* cpe:2.3:a:opera_software:opera_web_browser:8.01:::::::* cpe:2.3:a:opera_software:opera_web_browser:8.0:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.52:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.0.2::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.53:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.11::win32::::: cpe:2.3:a:opera_software:opera_web_browser:5.0::linux::::: cpe:2.3:a:opera_software:opera_web_browser:7.54:::::::* cpe:2.3:a:opera_software:opera_web_browser:5.0::mac::::: cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.50:::::::* cpe:2.3:a:opera_software:opera_web_browser:8.53:::::::* cpe:2.3:a:opera_software:opera_web_browser:7.0::win32::::: cpe:2.3:a:opera_software:opera_web_browser:6.0.2::linux::::: cpe:2.3:a:opera_software:opera_web_browser:5.10::win32::::: cpe:2.3:a:opera_software:opera_web_browser:7.11j:::::::* cpe:2.3:a:opera_software:opera_web_browser:6.0.5::win32::::: cpe:2.3:a:opera_software:opera_web_browser:8.52:::::::*	cpe:2.3:a:opera:opera_browser::::::::

Information

Published : 2006-06-23 20:06

Updated : 2024-11-21 00:13

NVD link : CVE-2006-3198

Mitre link : CVE-2006-3198

CVE.ORG link : CVE-2006-3198

JSON object : View

Products Affected

opera

opera_browser

CWE

CWE-190

Integer Overflow or Wraparound

7.5 /10