Opera < 7.22 Multiple Vulnerabilities

This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.


Synopsis :

The remote host contains a web browser which is affected by multiple
issues.

Description :

The remote host is using Opera, an alternative web browser.

The version of Opera installed on the remote host is affected by
several issues. One may allow an attacker to drop arbitrary files
with arbitrary names on this host; another may allow an attacker to
traverse directories on the affected host.

To exploit these flaws, an attacker would need to set up a rogue
website and lure a user of this host visit it using Opera. He might
then be able to execute arbitrary code on this host.

See also :

http://seclists.org/bugtraq/2003/Nov/128
http://seclists.org/bugtraq/2003/Nov/130
http://www.opera.com/docs/changelogs/windows/722/

Solution :

Upgrade to Opera version 7.22 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 9.3
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 11922 ()

Bugtraq ID: 9019
9021

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now