CVE-2011-0682
HIGH severity · CVSS 9.3 · Memory corruption
9.3CVSS HIGH
Summary
Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children.
Impact & exploitability
Attack vectorNetwork
Attack complexity—
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)6%
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://secunia.com/advisories/43023Advisory
- http://www.opera.com/support/kb/view/982/Advisory
- http://www.vupen.com/english/advisories/2011/0231Advisory
- http://osvdb.org/70728
- http://www.opera.com/docs/changelogs/mac/1101/
- http://www.opera.com/docs/changelogs/unix/1101/
- http://www.opera.com/docs/changelogs/windows/1101/
- http://www.securityfocus.com/bid/46036