Back to search
CVE-2008-4197
Published: Sep 27, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and menu commands, can produce argument strings that contain uninitialized memory, which might allow user-assisted remote attackers to execute arbitrary code or conduct other attacks via vectors related to activation of a shortcut.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-2416
vdb-entry
x_refsource_VUPEN
32538
third-party-advisory
x_refsource_SECUNIA
opera-shortcuts-code-execution(44552)
vdb-entry
x_refsource_XF
http://www.opera.com/docs/changelogs/solaris/952/
x_refsource_CONFIRM
1020720
vdb-entry
x_refsource_SECTRACK
30768
vdb-entry
x_refsource_BID
http://www.opera.com/docs/changelogs/windows/952/
x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/linux/952/
x_refsource_CONFIRM
[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities
mailing-list
x_refsource_MLIST
[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities
mailing-list
x_refsource_MLIST
31549
third-party-advisory
x_refsource_SECUNIA
http://bugs.gentoo.org/show_bug.cgi?id=235298
x_refsource_CONFIRM
http://www.opera.com/docs/changelogs/freebsd/952/
x_refsource_CONFIRM
http://www.opera.com/support/search/view/894/
x_refsource_CONFIRM
GLSA-200811-01
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now