Medium Nessus Plugin ID 19240
SynopsisThe remote host is missing a vendor-supplied security patch
DescriptionThe remote host is missing the patch for the advisory SUSE-SA:2005:031 (opera).
The commercial web browser Opera has been updated to the 8.0 version, fixing all currently known security problems, including:
- CVE-2005-0235: IDN cloaking / homograph attack allows easy spoofing of domain names.
- CVE-2005-0456: Opera did not validate base64 encoded binary in data:
- CVE-2005-1139: Opera showed the Organizational Information of SSL certificates which could be easily spoofed and be used for phishing attacks.
A full Changelog can be found on: