CVE-2012-6462 in Opera Web Browserinfo

Summary

Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.

Reservation

01/02/2013

Disclosure

01/02/2013

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
6912Opera Web Browser access control264UnprovenOfficial fixCVE-2012-6462
6911Opera Web Browser WebP Image File access control264Not definedOfficial fixCVE-2012-6462
6910Opera Web Browser CORS Request access control264UnprovenOfficial fixCVE-2012-6462
6909Opera Web Browser Certificate access control264Not definedOfficial fixCVE-2012-6462
6908Opera Web Browser SVG Image access control264UnprovenOfficial fixCVE-2012-6462

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!