Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title Opera: Multiple vulnerabilities
Informations
Name GLSA-201406-14 First vendor Publication 2014-06-15
Vendor Gentoo Last vendor Modification 2014-06-15
Severity (Vendor) Normal Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

Multiple vulnerabilities have been found in Opera, the worst of which may allow remote execution of arbitrary code.

Background

Opera is a fast web browser that is available free of charge.

Description

Multiple vulnerabilities have been discovered in Opera. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could entice a user to open a specially crafted web page using Opera, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition.
Furthermore, a remote attacker may be able to obtain sensitive information, conduct Cross-Site Scripting (XSS) attacks, or bypass security restrictions.

A local attacker may be able to obtain sensitive information.

Workaround

There is no known workaround at this time.

Resolution

All Opera users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/opera-12.13_p1734"

References

[ 1 ] CVE-2012-6461 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6461
[ 2 ] CVE-2012-6462 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6462
[ 3 ] CVE-2012-6463 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6463
[ 4 ] CVE-2012-6464 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6464
[ 5 ] CVE-2012-6465 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6465
[ 6 ] CVE-2012-6466 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6466
[ 7 ] CVE-2012-6467 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6467
[ 8 ] CVE-2012-6468 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6468
[ 9 ] CVE-2012-6469 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6469
[ 10 ] CVE-2012-6470 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6470
[ 11 ] CVE-2012-6471 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6471
[ 12 ] CVE-2012-6472 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6472
[ 13 ] CVE-2013-1618 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1618
[ 14 ] CVE-2013-1637 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1637
[ 15 ] CVE-2013-1638 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1638
[ 16 ] CVE-2013-1639 : http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1639

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-201406-14.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-201406-14.xml

CWE : Common Weakness Enumeration

% Id Name
21 % CWE-94 Failure to Control Generation of Code ('Code Injection')
14 % CWE-264 Permissions, Privileges, and Access Controls
14 % CWE-200 Information Exposure
14 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
14 % CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
7 % CWE-352 Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)
7 % CWE-310 Cryptographic Issues
7 % CWE-20 Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:19005
 
Oval ID: oval:org.mitre.oval:def:19005
Title: Vulnerability which allows remote attackers to conduct phishing attacks in Opera before 12.11
Description: Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other inline element, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site, as exploited in the wild in November 2012.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6467
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19083
 
Oval ID: oval:org.mitre.oval:def:19083
Title: Vulnerability which allows remote attackers to execute arbitrary code in Opera before 12.13
Description: Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.
Family: windows Class: vulnerability
Reference(s): CVE-2013-1638
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19436
 
Oval ID: oval:org.mitre.oval:def:19436
Title: Vulnerability which allows remote attackers to execute arbitrary code in Opera before 12.13
Description: Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events.
Family: windows Class: vulnerability
Reference(s): CVE-2013-1637
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19458
 
Oval ID: oval:org.mitre.oval:def:19458
Title: Vulnerability which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks in Opera before 12.13
Description: The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.
Family: windows Class: vulnerability
Reference(s): CVE-2013-1618
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19531
 
Oval ID: oval:org.mitre.oval:def:19531
Title: Vulnerability which allows remote attackers to spoof the address field in Opera before 12.12
Description: Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6471
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19617
 
Oval ID: oval:org.mitre.oval:def:19617
Title: Vulnerability which allows remote attackers to bypass a CSRF protection in Opera before 12.13
Description: Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.
Family: windows Class: vulnerability
Reference(s): CVE-2013-1639
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19634
 
Oval ID: oval:org.mitre.oval:def:19634
Title: Vulnerability which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) in Opera before 12.10
Description: Opera before 12.10 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed SVG image.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6465
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19762
 
Oval ID: oval:org.mitre.oval:def:19762
Title: Vulnerability which allows remote attackers to inject arbitrary web script or HTML in Opera before 12.10
Description: Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native objects in documents that have different origins.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6464
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19790
 
Oval ID: oval:org.mitre.oval:def:19790
Title: Vulnerability which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) in Opera before 12.12
Description: Opera before 12.12 does not properly allocate memory for GIF images, which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a malformed image.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6470
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19841
 
Oval ID: oval:org.mitre.oval:def:19841
Title: Vulnerability allows remote attackers to bypass intended page-content restrictions in Opera before 12.10
Description: Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6462
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19866
 
Oval ID: oval:org.mitre.oval:def:19866
Title: Vulnerability which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) in Opera before 12.11
Description: Heap-based buffer overflow in Opera before 12.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a long HTTP response.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6468
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19889
 
Oval ID: oval:org.mitre.oval:def:19889
Title: Vulnerability which allows remote attackers to determine the existence of arbitrary local files in Opera before 12.11
Description: Opera before 12.11 allows remote attackers to determine the existence of arbitrary local files via vectors involving web script in an error page.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6469
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19945
 
Oval ID: oval:org.mitre.oval:def:19945
Title: Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML in Opera before 12.10
Description: Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an unspecified sequence of loading of documents and loading of data: URLs.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6463
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19969
 
Oval ID: oval:org.mitre.oval:def:19969
Title: Vulnerability which allows remote attackers to obtain potentially sensitive information from process memory in Opera before 12.10
Description: Opera before 12.10 does not properly handle incorrect size data in a WebP image, which allows remote attackers to obtain potentially sensitive information from process memory by using a crafted image as the fill pattern for a canvas.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6466
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19991
 
Oval ID: oval:org.mitre.oval:def:19991
Title: Vulnerability allows remote attackers to trigger a false indication of successful revocation-status checking in Opera before 12.10
Description: The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by causing a failure of a single checking service.
Family: windows Class: vulnerability
Reference(s): CVE-2012-6461
Version: 4
Platform(s): Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Product(s): Opera Browser
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 185
Os 1

Snort® IPS/IDS

Date Description
2019-03-12 Opera GIF parsing buffer overflow attempt
RuleID : 49115 - Revision : 1 - Type : BROWSER-OTHER
2019-03-12 Opera GIF parsing buffer underflow attempt
RuleID : 49114 - Revision : 2 - Type : BROWSER-OTHER
2019-03-12 Opera GIF parsing buffer overflow attempt
RuleID : 49113 - Revision : 1 - Type : BROWSER-OTHER
2019-03-12 Opera GIF parsing buffer underflow attempt
RuleID : 49112 - Revision : 2 - Type : BROWSER-OTHER
2015-05-21 Opera SVG use after free memory corruption attempt
RuleID : 34171 - Revision : 4 - Type : BROWSER-OTHER
2015-05-21 Opera SVG use after free memory corruption attempt
RuleID : 34170 - Revision : 3 - Type : BROWSER-OTHER

Nessus® Vulnerability Scanner

Date Description
2014-06-16 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201406-14.nasl - Type : ACT_GATHER_INFO
2014-06-13 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-113.nasl - Type : ACT_GATHER_INFO
2013-01-30 Name : The remote host contains a web browser that is affected by multiple vulnerabi...
File : opera_1213.nasl - Type : ACT_GATHER_INFO
2012-12-19 Name : The remote host contains a web browser that is affected by multiple vulnerabi...
File : opera_1212.nasl - Type : ACT_GATHER_INFO
2012-11-21 Name : The remote host contains a web browser that is affected by multiple vulnerabi...
File : opera_1211.nasl - Type : ACT_GATHER_INFO
2012-11-06 Name : The remote host contains a web browser that is affected by multiple vulnerabi...
File : opera_1210.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2014-06-17 13:25:41
  • Multiple Updates
2014-06-15 05:21:01
  • First insertion