QwikSec

Security Database

CVE

CWE

Training

CVE-2008-4292

Published: Sep 27, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Opera before 9.52 does not check the CRL override upon encountering a certificate that lacks a CRL, which has unknown impact and attack vectors. NOTE: it is not clear whether this is a vulnerability, but the vendor included it in a security section of the advisory.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

http://my.opera.com/yngve/blog/2008/06/27/nobody-checks-the-padlock-debunked-by-opera-users

x_refsource_MISC

opera-crloverride-unspecified(45589)

vdb-entry

x_refsource_XF

http://www.opera.com/docs/changelogs/mac/952/

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/solaris/952/

x_refsource_CONFIRM

http://my.opera.com/community/forums/topic.dml?id=241988&t=1222404671&page=1

x_refsource_MISC

http://www.opera.com/docs/changelogs/windows/952/

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/linux/952/

x_refsource_CONFIRM

[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities

mailing-list

x_refsource_MLIST

[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

http://bugs.gentoo.org/show_bug.cgi?id=235298

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/freebsd/952/

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.