Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
The host is installed with Opera before 9.62 and is prone to unspecified vulnerability. A flaw is present in the application, which fails to handle the History Search results page. Successful exploitation allows remote attackers to execute arbitrary commands.
The host is installed with Opera before 9.63 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which fails to handle built-in XSLT templates. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.
The host is installed with Opera before 9.61 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which a page is located in a frame, executes a javascript: URL in the context of the outermost page instead of the page that contains this URL. Successful exploitation allows remote attackers to conduct cross-site scripting (XSS) attacks.
The host is installed with Opera before 9.61 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which fails to properly escape before storage in the History Search database (aka md.dat). Successful exploitation allows remote attackers to inject arbitrary web script or HTML via the anchor identifier (aka the "optional fragment").
The host is installed with Opera before 9.52 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.
The host is installed with Opera before 9.26 and is prone to cross-site scripting vulnerability. A flaw is present in the application, which fails to handle crafted attribute values in an XML document. Successful exploitation allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properl ...
The host is installed with Opera before 11.50 and is prone to cross-site scripting vulnerability. A flaw is present in the application which fails to restrict data: URIs. Successful exploitation allow remote attackers to conduct cross-site scripting.
The host is installed with Opera before 11.60 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle certificate revocation. Successful exploitation could allow attackers to produce unknown impacts.
The host is installed with Opera browser before 11.0 and is prone to a X509 spoofing vulnerability. A flaw is present in the application, which gives improper information of X.509 certificates on https web sites when Opera Turbo is enabled. Successful exploitation could allow a remote attacker to redirect users to malicious web sites.