CVE-2011-3388

MEDIUM

Description

Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field and page information dialog to contain security information based on the trusted site, instead of the insecure site.

References

http://osvdb.org/74828

http://secunia.com/advisories/45791

http://www.opera.com/docs/changelogs/mac/1151/

http://www.opera.com/docs/changelogs/unix/1151/

http://www.opera.com/docs/changelogs/windows/1151/

http://www.opera.com/support/kb/view/1000/

http://www.securityfocus.com/bid/49388

http://www.securitytracker.com/id?1025997

https://exchange.xforce.ibmcloud.com/vulnerabilities/69515

Details

Source: MITRE

Published: 2011-09-06

Updated: 2017-08-29

Type: CWE-200

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM