Vulnerability Details CVE-2004-0717
Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/11978
- http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1598
- http://secunia.com/advisories/11978
- http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1598
Products affected by CVE-2004-0717
-
cpe:2.3:a:opera:opera_browser:7.50
-
cpe:2.3:a:opera:opera_browser:7.51
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-