Vulnerability Details CVE-2005-3006
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=112724692219695&w=2
- http://secunia.com/advisories/16645
- http://secunia.com/secunia_research/2005-42/advisory/
- http://www.opera.com/docs/changelogs/linux/850/
- http://www.opera.com/docs/changelogs/windows/850/
- http://www.osvdb.org/19508
- http://www.securityfocus.com/advisories/9339
- http://www.securityfocus.com/bid/14880
- http://www.vupen.com/english/advisories/2005/1789
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22335
- http://marc.info/?l=bugtraq&m=112724692219695&w=2
- http://secunia.com/advisories/16645
- http://secunia.com/secunia_research/2005-42/advisory/
- http://www.opera.com/docs/changelogs/linux/850/
- http://www.opera.com/docs/changelogs/windows/850/
- http://www.osvdb.org/19508
- http://www.securityfocus.com/advisories/9339
- http://www.securityfocus.com/bid/14880
- http://www.vupen.com/english/advisories/2005/1789
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22335
Products affected by CVE-2005-3006
-
cpe:2.3:a:opera:opera_browser:-
-
cpe:2.3:a:opera:opera_browser:1.00
-
cpe:2.3:a:opera:opera_browser:2.00
-
cpe:2.3:a:opera:opera_browser:2.10
-
cpe:2.3:a:opera:opera_browser:2.12
-
cpe:2.3:a:opera:opera_browser:3.00
-
cpe:2.3:a:opera:opera_browser:3.10
-
cpe:2.3:a:opera:opera_browser:3.21
-
cpe:2.3:a:opera:opera_browser:3.50
-
cpe:2.3:a:opera:opera_browser:3.51
-
cpe:2.3:a:opera:opera_browser:3.60
-
cpe:2.3:a:opera:opera_browser:3.61
-
cpe:2.3:a:opera:opera_browser:3.62
-
cpe:2.3:a:opera:opera_browser:4.00
-
cpe:2.3:a:opera:opera_browser:4.01
-
cpe:2.3:a:opera:opera_browser:4.02
-
cpe:2.3:a:opera:opera_browser:5.0
-
cpe:2.3:a:opera:opera_browser:5.02
-
cpe:2.3:a:opera:opera_browser:5.10
-
cpe:2.3:a:opera:opera_browser:5.11
-
cpe:2.3:a:opera:opera_browser:5.12
-
cpe:2.3:a:opera:opera_browser:6.0
-
cpe:2.3:a:opera:opera_browser:6.01
-
cpe:2.3:a:opera:opera_browser:6.02
-
cpe:2.3:a:opera:opera_browser:6.03
-
cpe:2.3:a:opera:opera_browser:6.04
-
cpe:2.3:a:opera:opera_browser:6.05
-
cpe:2.3:a:opera:opera_browser:6.06
-
cpe:2.3:a:opera:opera_browser:6.1
-
cpe:2.3:a:opera:opera_browser:6.10
-
cpe:2.3:a:opera:opera_browser:6.11
-
cpe:2.3:a:opera:opera_browser:6.12
-
cpe:2.3:a:opera:opera_browser:7.0
-
cpe:2.3:a:opera:opera_browser:7.01
-
cpe:2.3:a:opera:opera_browser:7.02
-
cpe:2.3:a:opera:opera_browser:7.03
-
cpe:2.3:a:opera:opera_browser:7.10
-
cpe:2.3:a:opera:opera_browser:7.11
-
cpe:2.3:a:opera:opera_browser:7.20
-
cpe:2.3:a:opera:opera_browser:7.21
-
cpe:2.3:a:opera:opera_browser:7.22
-
cpe:2.3:a:opera:opera_browser:7.23
-
cpe:2.3:a:opera:opera_browser:7.30
-
cpe:2.3:a:opera:opera_browser:7.50
-
cpe:2.3:a:opera:opera_browser:7.51
-
cpe:2.3:a:opera:opera_browser:7.52
-
cpe:2.3:a:opera:opera_browser:7.53
-
cpe:2.3:a:opera:opera_browser:7.54
-
cpe:2.3:a:opera:opera_browser:7.55
-
cpe:2.3:a:opera:opera_browser:7.60
-
cpe:2.3:a:opera:opera_browser:8.0
-
cpe:2.3:a:opera:opera_browser:8.00
-
cpe:2.3:a:opera:opera_browser:8.01
-
cpe:2.3:a:opera:opera_browser:8.02