CVE-2012-1929
medium
CVSS v3
—
CVSS v2
6.4
VIR risk
6.4
Description
Opera before 11.62 on Mac OS X allows remote attackers to spoof the address field and security dialogs via crafted styling that causes page content to be displayed outside of the intended content area.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — http://www.opera.com/support/kb/view/1009/
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| macos | not-affected | |
Application impact
References
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html
- http://secunia.com/advisories/48535
- http://www.opera.com/docs/changelogs/mac/1162/
- http://www.opera.com/docs/changelogs/windows/1162/
- http://www.opera.com/support/kb/view/1009/
- http://www.opera.com/support/kb/view/1013/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74352
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html
- http://secunia.com/advisories/48535
- http://www.opera.com/docs/changelogs/mac/1162/
- http://www.opera.com/docs/changelogs/windows/1162/
- http://www.opera.com/support/kb/view/1009/
- http://www.opera.com/support/kb/view/1013/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74352
CWEs
CWE-20
Verify integrity in audit chain (admin only). AS-IS.