VuXML: opera -- multiple vulnerabilities

Affected packages

opera

10.63

Details

VuXML ID	aab187d4-e0f3-11df-b1ea-001999392805
Discovery	2010-10-12
Entry	2010-10-26

VuXML ID

aab187d4-e0f3-11df-b1ea-001999392805

Discovery

2010-10-12

Entry

2010-10-26

The Opera Desktop Team reports:

Fixed an issue that allowed cross-domain checks to be bypassed, allowing limited data theft using CSS, as reported by Isaac Dawson.

Fixed an issue where manipulating the window could be used to spoof the page address.

Fixed an issue with reloads and redirects that could allow spoofing and cross-site scripting.

Fixed an issue that allowed private video streams to be intercepted, as reported by Nirankush Panchbhai of Microsoft Vulnerability Research.

Fixed an issue that caused JavaScript to run in the wrong security context after manual interaction.

[source]

URL	http://www.opera.com/support/kb/view/971/
URL	http://www.opera.com/support/kb/view/972/
URL	http://www.opera.com/support/kb/view/973/
URL	http://www.opera.com/support/kb/view/974/
URL	http://www.opera.com/support/kb/view/976/

opera -- multiple vulnerabilities

Details

References