CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-2659

Opera offers an Open button to verify that a user wishes to execute a downloaded file, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking Open via a request for a different mouse or keyboard action very shortly before the Open dialog appears. NOTE: this is a different issue than CVE-2005-2407.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.4%

CVSS Severity

CVSS v2 Score 4.0

References

http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0264.html
http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0264.html
http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/

Products affected by CVE-2004-2659

Mozilla » Mozilla » Version: N/A

cpe:2.3:a:mozilla:mozilla:-
Opera » Opera Browser » Version: N/A

cpe:2.3:a:opera:opera_browser:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2659

Products

Pricing

Contact Us