CVE-2004-1490 in Web Browserinfo

Summary

Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

02/17/2005

Disclosure

12/31/2004

Moderation

VulDB entry created

Entries

VDB-22775 (1)

CPE

ready

CWE

CWE-290 (Confirmed)

CVSS

3.7

EPSS

0.01133

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1490
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1490
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1490/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!