NVD

Id
14032  
Name
CVE-2010-2576  
Description
Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change, which allows remote attackers to conduct clickjacking attacks, and consequently execute arbitrary code, via vectors involving (1) closing a tab or (2) hiding a tab, a related issue to CVE-2005-2407.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2010-08-16  
Modified Date
2012-06-07  
Seq
2010-2576  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
77730 14032 CVE-2010-2576 oval:org.mitre.oval:def:12084  View
77731 14032 CVE-2010-2576 http://www.opera.com/docs/changelogs/mac/1061/  View
77732 14032 CVE-2010-2576 http://www.opera.com/docs/changelogs/unix/1061/  View
77733 14032 CVE-2010-2576 http://www.opera.com/docs/changelogs/windows/1061/  View
77734 14032 CVE-2010-2576 http://www.opera.com/support/kb/view/967/  View
77735 14032 CVE-2010-2576 20100812 Secunia Research: Opera "Download" Dialog File Execution Security Issue  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36259 JVNDB-2010-002039 Opera における任意のコードを実行される脆弱性 Opera は、現在のタブ変更後に可視化するダウンロードダイアログ上のクリックを適切に抑制しないため、クリックジャッキング攻撃を誘導され、任意のコードを実行される脆弱性が存在します。 CVE-2010-2576 45156 CVE-2010-2576 14032 6.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002039.html 2010-08-12 2010-09-27 View