CVE-2005-2405

Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.opera.com/linux/changelogs/802/	Broken Link Patch
http://secunia.com/advisories/15870	Broken Link Patch
http://www.securityfocus.com/bid/14402	Broken Link Third Party Advisory VDB Entry
http://securitytracker.com/id?1014592	Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/1251	Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/21784	Third Party Advisory VDB Entry

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:opera:opera_browser:8.01:*:*:*:*:*:*:*

Information

Published : 2005-07-31 21:00

Updated : 2022-02-28 08:31

NVD link : CVE-2005-2405

Mitre link : CVE-2005-2405

JSON object : View

CWE

CWE-20

Improper Input Validation

Advertisement

Products Affected

opera

opera_browser

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.opera.com/linux/changelogs/802/", "name": "http://www.opera.com/linux/changelogs/802/", "tags": ["Broken Link", "Patch"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/15870", "name": "15870", "tags": ["Broken Link", "Patch"], "refsource": "SECUNIA"}, {"url": "http://www.securityfocus.com/bid/14402", "name": "14402", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1014592", "name": "1014592", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://www.vupen.com/english/advisories/2005/1251", "name": "ADV-2005-1251", "tags": ["Broken Link"], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21784", "name": "opera-content-disposition-extension-spoofing(21784)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Opera 8.01, when the \"Arial Unicode MS\" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-20"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-2405", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-08-01T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:opera:opera_browser:8.01:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2022-02-28T16:31Z"}