icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Opera < 12.15 Multiple Vulnerabilities

Medium

Synopsis

The remote host has a web browser installed that is vulnerable by multiple vulnerabilities

Description

Versions of Opera earlier than 12.15 are potentially affected by the following vulnerabilities :

- A weakness exists in the RC4 encryption protocol, allowing an attacker to derive the plaintext. (1046)

- A weakness exists due to the application allowing cookies to be set for top-level domains, potentially exposing the cookie to the entire top-level domain. A malicious site could redirect the user to another website within the same top-level domain causing it to reuse its cookie. (1047)

- An unspecified, moderate severity issue exists that has an unspecified impact.

Solution

Upgrade to Opera 12.15 or later.