Vulnerability Description
Opera before 9.26 allows remote attackers to misrepresent web page addresses using "certain characters" that "cause the page address text to be misplaced."
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opera | Opera Browser | <= 9.25 |
References
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.html
- http://secunia.com/advisories/30636Vendor Advisory
- http://secunia.com/advisories/30682
- http://www.opera.com/docs/changelogs/linux/950/#security
- http://www.opera.com/docs/changelogs/windows/950/#security
- http://www.opera.com/support/search/view/878/
- http://www.securityfocus.com/bid/29684Patch
- http://www.vupen.com/english/advisories/2008/1812
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43035
- http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.html
- http://secunia.com/advisories/30636Vendor Advisory
- http://secunia.com/advisories/30682
- http://www.opera.com/docs/changelogs/linux/950/#security
- http://www.opera.com/docs/changelogs/windows/950/#security
- http://www.opera.com/support/search/view/878/
FAQ
What is CVE-2008-2714?
CVE-2008-2714 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Opera before 9.26 allows remote attackers to misrepresent web page addresses using "certain characters" that "cause the page address text to be misplaced."
How severe is CVE-2008-2714?
CVE-2008-2714 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-2714?
Check the references section above for vendor advisories and patch information. Affected products include: Opera Opera Browser.