2.6 CVE-2004-1490
Patch
Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
https://nvd.nist.gov/vuln/detail/CVE-2004-1490
Categories
CWE-NVD-noinfo
References
BID Patch
| 11883 Broken Link Patch Third Party Advisory VDB Entry |
CONFIRM
| http://www.opera.com/linux/changelogs/754u1/ Broken Link |
GENTOO Patch
| GLSA-200502-17 Patch Third Party Advisory |
MISC Patch
| http://secunia.com/secunia_research/2004-19/advisory/ Broken Link Patch |
SECUNIA Patch
| 12981 Broken Link Patch |
XF
| opera-file-type-spoofing(18423) Third Party Advisory VDB Entry |
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:* | <= 7.54 | |
Patch
| Url |
|---|
| 11883 |
| GLSA-200502-17 |
| http://secunia.com/secunia_research/2004-19/advisory/ |
| 12981 |
Exploits
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
Other (github, ...)
| Url |
|---|
| No known exploits |
CAPEC
| id | description | severity |
|---|---|---|
| No entry | ||
Sherlock® flash
Take a picture of your computer network in a few clicks !
The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.
