CVE-2008-2716 — MEDIUM (5.0)

Q: What is CVE-2008-2716?

CVE-2008-2716 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.

Q: How severe is CVE-2008-2716?

CVE-2008-2716 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2008-2716?

Check the references section above for vendor advisories and patch information. Affected products include: Opera Opera Browser.

Vulnerability Description

Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Opera	Opera Browser	< 9.5

Related Weaknesses (CWE)

CWE-1021

References

http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.htmlThird Party Advisory
http://secunia.com/advisories/30636Broken Link
http://secunia.com/advisories/30682Broken Link
http://www.opera.com/docs/changelogs/linux/950/#securityBroken LinkVendor Advisory
http://www.opera.com/docs/changelogs/windows/950/#securityBroken LinkVendor Advisory
http://www.opera.com/support/search/view/885/Broken LinkVendor Advisory
http://www.securityfocus.com/bid/29684Broken LinkPatchThird Party Advisory
http://www.securitytracker.com/id?1020292Broken LinkThird Party AdvisoryVDB Entry
http://www.vupen.com/english/advisories/2008/1812Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/43033Third Party AdvisoryVDB Entry
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.htmlThird Party Advisory
http://secunia.com/advisories/30636Broken Link
http://secunia.com/advisories/30682Broken Link
http://www.opera.com/docs/changelogs/linux/950/#securityBroken LinkVendor Advisory
http://www.opera.com/docs/changelogs/windows/950/#securityBroken LinkVendor Advisory

FAQ

What is CVE-2008-2716?

CVE-2008-2716 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.

How severe is CVE-2008-2716?

CVE-2008-2716 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-2716?

Check the references section above for vendor advisories and patch information. Affected products include: Opera Opera Browser.