Think you have a false positive on this rule?

Sid 1-17165

Message

BROWSER-OTHER Opera browser document writing uninitialized memory access attempt

Summary

Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript that writes sequences in an infinite loop, leading to attempted use of uninitialized memory. NOTE: this might overlap CVE-2006-6955.

Impact

CVSS base score 9.3 CVSS impact score 10.0 CVSS exploitability score 8.6 confidentialityImpact COMPLETE integrityImpact COMPLETE availabilityImpact COMPLETE

CVE-2010-1728:

CVSS base score 9.3

CVSS impact score 10.0

CVSS exploitability score 8.6

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Detailed information

CVE-2010-1728: Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript that writes sequences in an infinite loop, leading to attempted use of uninitialized memory. NOTE: this might overlap CVE-2006-6955.

Affected systems

  • opera opera_browser 5.0
  • opera opera_browser 5.02
  • opera opera_browser 5.10
  • opera opera_browser 5.11
  • opera opera_browser 5.12
  • opera opera_browser 6.0
  • opera opera_browser 6.01
  • opera opera_browser 6.1
  • opera opera_browser 6.02
  • opera opera_browser 6.03
  • opera opera_browser 6.04
  • opera opera_browser 6.05
  • opera opera_browser 6.06
  • opera opera_browser 6.11
  • opera opera_browser 6.12
  • opera opera_browser 7.0
  • opera opera_browser 7.01
  • opera opera_browser 7.02
  • opera opera_browser 7.03
  • opera opera_browser 7.10
  • opera opera_browser 7.11
  • opera opera_browser 7.20
  • opera opera_browser 7.21
  • opera opera_browser 7.22
  • opera opera_browser 7.50
  • opera opera_browser 7.52
  • opera opera_browser 7.53
  • opera opera_browser 7.54
  • opera opera_browser 7.60
  • opera opera_browser 8.0
  • opera opera_browser 8.01
  • opera opera_browser 8.50
  • opera opera_browser 8.51
  • opera opera_browser 8.52
  • opera opera_browser 8.54
  • opera opera_browser 9.0
  • opera opera_browser 9.01
  • opera opera_browser 9.02
  • opera opera_browser 9.10
  • opera opera_browser 9.20
  • opera opera_browser 9.22
  • opera opera_browser 9.24
  • opera opera_browser 9.25
  • opera opera_browser 9.26
  • opera opera_browser 9.27
  • opera opera_browser 9.50
  • opera opera_browser 9.51
  • opera opera_browser 9.52
  • opera opera_browser 9.60
  • opera opera_browser 9.61
  • opera opera_browser 9.63
  • opera opera_browser 9.64
  • opera opera_browser 10.00
  • opera opera_browser 10.01
  • opera opera_browser 10.10
  • opera opera_browser 10.50
  • opera opera_browser 10.51
  • opera opera_browser 10.52

Ease of attack

CVE-2010-1728:

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

False positives

None known

False negatives

None known

Corrective action

Upgrade to the latest non-affected version of the software.

Apply the appropriate vendor supplied patches.

Contributors

  • Talos research team.
  • This document was generated from data supplied by the national vulnerability database, a product of the national institute of standards and technology.
  • For more information see nvd.

Additional References