2.6 CVE-2004-1490

Patch

 

Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
https://nvd.nist.gov/vuln/detail/CVE-2004-1490

Categories

CWE-NVD-noinfo

References

BID Patch

11883
Broken Link Patch Third Party Advisory VDB Entry

CONFIRM

GENTOO Patch

GLSA-200502-17
Patch Third Party Advisory

MISC Patch

SECUNIA Patch

12981
Broken Link Patch

XF

opera-file-type-spoofing(18423)
Third Party Advisory VDB Entry


 

CPE

cpe start end
Configuration 1
cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:* <= 7.54

Patch

Url
11883
GLSA-200502-17
http://secunia.com/secunia_research/2004-19/advisory/
12981

Exploits

Exploit-db.com
id description date
No known exploits
Other (github, ...)
Url
No known exploits

CAPEC

id description severity
No entry

Sherlock® flash

Take a picture of your computer network in a few clicks !

The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.

Discover this offer

Sherlock® flash: 1st instant cybersecurity audit solution