CVE-2010-4584

LOW

Description

Opera before 11.00, when Opera Turbo is used, does not properly present information about problematic X.509 certificates on https web sites, which might make it easier for remote attackers to spoof trusted content via a crafted web site.

References

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

http://secunia.com/advisories/42653

http://www.opera.com/docs/changelogs/mac/1100/

http://www.opera.com/docs/changelogs/unix/1100/

http://www.opera.com/docs/changelogs/windows/1100/

Details

Source: MITRE

Published: 2010-12-22

Updated: 2011-01-22

Type: CWE-310

Risk Information

CVSS v2.0

Base Score: 2.6

Vector: (AV:N/AC:H/Au:N/C:N/I:P/A:N)

Impact Score: 2.9

Exploitability Score: 4.9

Severity: LOW