Vulnerability Description
Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opera | Opera Browser | < 9.01 |
Related Weaknesses (CWE)
References
- http://echo.or.id/adv/adv35-y3dips-2006.txtBroken LinkExploit
- http://securityreason.com/securityalert/1185Broken Link
- http://www.osvdb.org/27511Broken Link
- http://www.securityfocus.com/archive/1/438872/100/0/threadedBroken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/18758Broken LinkExploitThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27531Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/1972Third Party AdvisoryVDB Entry
- http://echo.or.id/adv/adv35-y3dips-2006.txtBroken LinkExploit
- http://securityreason.com/securityalert/1185Broken Link
- http://www.osvdb.org/27511Broken Link
- http://www.securityfocus.com/archive/1/438872/100/0/threadedBroken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/18758Broken LinkExploitThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27531Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/1972Third Party AdvisoryVDB Entry
FAQ
What is CVE-2006-3353?
CVE-2006-3353 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain styl...
How severe is CVE-2006-3353?
CVE-2006-3353 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3353?
Check the references section above for vendor advisories and patch information. Affected products include: Opera Opera Browser.