Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.
References
| Link | Resource |
|---|---|
| http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html | Exploit |
| http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml | Patch Third Party Advisory |
| http://www.opera.com/linux/changelogs/754u1/ | Broken Link |
Configurations
History
28 Feb 2022, 18:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml - Patch, Third Party Advisory | |
| References | (CONFIRM) http://www.opera.com/linux/changelogs/754u1/ - Broken Link | |
| First Time |
Opera
Opera opera Browser |
|
| CWE | CWE-668 | |
| CPE | cpe:2.3:a:opera_software:opera_web_browser:7.0:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.12:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.11:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.11j:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.50b1:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.54:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.0_beta2:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.0:*:mac:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.0.1:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.23:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.22:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.20_beta1_build2981:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.12:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.51:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.0.3:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.6:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.2:*:linux:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.53:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.21:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.10:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.0_beta1:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.20:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.50:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.10:*:linux:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.1.0:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.5:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.4:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.52:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.1:*:linux:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.0:*:linux:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.0.2:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:7.11b:*:*:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:6.0.3:*:linux:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.0.2:*:win32:*:*:*:*:* cpe:2.3:a:opera_software:opera_web_browser:5.1.1:*:win32:*:*:*:*:* |
cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:* |
Information
Published : 2004-12-31 05:00
Updated : 2023-12-10 10:17
NVD link : CVE-2004-1489
Mitre link : CVE-2004-1489
CVE.ORG link : CVE-2004-1489
JSON object : View
Products Affected
opera
- opera_browser
CWE
CWE-668
Exposure of Resource to Wrong Sphere