CVE-2011-3388

Sažetak

Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field and page information dialog to contain security information based on the trusted site, instead of the insecure site.

Reference

http://osvdb.org/74828
http://secunia.com/advisories/45791
http://www.opera.com/docs/changelogs/mac/1151/
http://www.opera.com/docs/changelogs/unix/1151/
http://www.opera.com/docs/changelogs/windows/1151/
http://www.opera.com/support/kb/view/1000/
http://www.securityfocus.com/bid/49388
http://www.securitytracker.com/id?1025997
https://exchange.xforce.ibmcloud.com/vulnerabilities/69515

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

29-08-2017 - 01:30

Objavljeno

06-09-2011 - 19:55