Opera : Security Vulnerabilities, CVEs, Published In January 2007
The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call.
Max CVSS
9.3
EPSS Score
16.26%
Published
2007-01-09
Updated
2011-03-07
Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table (DHT) marker.
Max CVSS
9.3
EPSS Score
17.15%
Published
2007-01-09
Updated
2017-07-29
Opera allows remote attackers to cause a denial of service (application crash) via a web page that contains a large number of nested marquee tags, a related issue to CVE-2006-2723.
Max CVSS
4.3
EPSS Score
0.22%
Published
2007-01-29
Updated
2018-10-30
3 vulnerabilities found