oval:org.mitre.oval:def:6314

Definition Id: oval:org.mitre.oval:def:6314

Oval ID:	oval:org.mitre.oval:def:6314
Title:	Opera 9 and 10 allows remote attackers to conduct XSS Vulnerability
Description:	Opera before 10.01 does not properly restrict HTML in a (1) RSS or (2) Atom feed, which allows remote attackers to conduct cross-site scripting (XSS) attacks, and conduct cross-zone scripting attacks involving the Feed Subscription Page to read feeds or create feed subscriptions, via a crafted feed, related to the rendering of the application/rss+xml content type as "scripted content."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-3266	Version:	7
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2	Product(s):	Opera Browser
Definition Synopsis:
Opera Browser is installed AND Opera.exe version 9.x to 10.0.x AND Check if HKLM\SOFTWARE\Classes\Applications\Opera.exe\shell\open\command exists

Definition Id: oval:org.mitre.oval:def:6482

Oval ID:	oval:org.mitre.oval:def:6482
Title:	Opera Browser is installed
Description:	A version of Opera Browser is installed.
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:opera:opera_browser	Version:	14
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Opera Browser
Definition Synopsis:
[Oo]pera.*$ exists in unistall AND Opera.exe exists AND Check if HKLM\SOFTWARE\Classes\Applications\Opera.exe\shell\open\command exists
Referenced By:
oval:org.mitre.oval:def:6314