CVE-2005-2405
N/A
N/A
Summary
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://secunia.com/advisories/15870
- http://www.securityfocus.com/bid/14402
- http://www.opera.com/linux/changelogs/802/
- http://www.vupen.com/english/advisories/2005/1251
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21784
- http://securitytracker.com/id?1014592
References
- http://secunia.com/advisories/15870
- http://www.securityfocus.com/bid/14402
- http://www.opera.com/linux/changelogs/802/
- http://www.vupen.com/english/advisories/2005/1251
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21784
- http://securitytracker.com/id?1014592
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.