Home

CVE-2008-4197

Description

Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and menu commands, can produce argument strings that contain uninitialized memory, which might allow user-assisted remote attackers to execute arbitrary code or conduct other attacks via vectors related to activation of a shortcut.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
5.08

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Opera 9.51Windows
Multiple vulnerabilities affected in Opera 9.51 (For Ubuntu)Linux
Multiple vulnerabilities affected in Opera 9.51 (For Debian)Linux
Multiple vulnerabilities affected in Opera 9.51 (For Centos)Linux
Multiple vulnerabilities affected in Opera 9.51 (For RedHat)Linux
Multiple vulnerabilities affected in Opera 9.51 (For Suse)Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234