Vulnerability Description
Opera before 11.00, when Opera Turbo is used, does not properly present information about problematic X.509 certificates on https web sites, which might make it easier for remote attackers to spoof trusted content via a crafted web site.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opera | Opera Browser | <= 11.00 |
Related Weaknesses (CWE)
References
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
- http://secunia.com/advisories/42653
- http://www.opera.com/docs/changelogs/mac/1100/
- http://www.opera.com/docs/changelogs/unix/1100/
- http://www.opera.com/docs/changelogs/windows/1100/
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
- http://secunia.com/advisories/42653
- http://www.opera.com/docs/changelogs/mac/1100/
- http://www.opera.com/docs/changelogs/unix/1100/
- http://www.opera.com/docs/changelogs/windows/1100/
FAQ
What is CVE-2010-4584?
CVE-2010-4584 is a vulnerability with a CVSS score of 2.6 (LOW). Opera before 11.00, when Opera Turbo is used, does not properly present information about problematic X.509 certificates on https web sites, which might make it easier for remote attackers to spoof tr...
How severe is CVE-2010-4584?
CVE-2010-4584 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-4584?
Check the references section above for vendor advisories and patch information. Affected products include: Opera Opera Browser.