CVE-2006-1834

Description

Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings.

Risk Information

Base Score

9.8

MODERATE

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

15.762

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities affected in Opera 8.53	Windows
Multiple vulnerabilities affected in Opera 8.53 (For Ubuntu)	Linux
Multiple vulnerabilities affected in Opera 8.53 (For Debian)	Linux
Multiple vulnerabilities affected in Opera 8.53 (For Centos)	Linux
Multiple vulnerabilities affected in Opera 8.53 (For RedHat)	Linux
Multiple vulnerabilities affected in Opera 8.53 (For Suse)	Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234