CVE-2010-2661
Last modified
CVE-2010-2661 is a vulnerability of currently unknown severity. Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations.. EPSS estimates a 2.27% chance of exploitation in the next 30 days.
Description
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Opera | Opera Browser | <= 10.53 | — |
| Opera | Opera Browser | 5.0 | — |
| Opera | Opera Browser | 5.02 | — |
| Opera | Opera Browser | 5.10 | — |
| Opera | Opera Browser | 5.11 | — |
| Opera | Opera Browser | 5.12 | — |
| Opera | Opera Browser | 6.0 | — |
| Opera | Opera Browser | 6.01 | — |
| Opera | Opera Browser | 6.02 | — |
| Opera | Opera Browser | 6.03 | — |
| Opera | Opera Browser | 6.04 | — |
| Opera | Opera Browser | 6.05 | — |
| Opera | Opera Browser | 6.06 | — |
| Opera | Opera Browser | 7.0 | — |
| Opera | Opera Browser | 7.01 | — |
| Opera | Opera Browser | 7.02 | — |
| Opera | Opera Browser | 7.03 | — |
| Opera | Opera Browser | 7.10 | — |
| Opera | Opera Browser | 7.11 | — |
| Opera | Opera Browser | 7.20 | — |
| Opera | Opera Browser | 7.21 | — |
| Opera | Opera Browser | 7.22 | — |
| Opera | Opera Browser | 7.23 | — |
| Opera | Opera Browser | 7.50 | — |
| Opera | Opera Browser | 7.51 | — |
| Opera | Opera Browser | 7.52 | — |
| Opera | Opera Browser | 7.53 | — |
| Opera | Opera Browser | 7.54 | — |
| Opera | Opera Browser | 7.60 | — |
| Opera | Opera Browser | 8.0 | — |
| Opera | Opera Browser | 8.01 | — |
| Opera | Opera Browser | 8.02 | — |
| Opera | Opera Browser | 8.50 | — |
| Opera | Opera Browser | 8.51 | — |
| Opera | Opera Browser | 8.52 | — |
| Opera | Opera Browser | 8.53 | — |
| Opera | Opera Browser | 8.54 | — |
| Opera | Opera Browser | 9.0 | — |
| Opera | Opera Browser | 9.01 | — |
| Opera | Opera Browser | 9.02 | — |
| Opera | Opera Browser | 9.10 | — |
| Opera | Opera Browser | 9.12 | — |
| Opera | Opera Browser | 9.20 | — |
| Opera | Opera Browser | 9.21 | — |
| Opera | Opera Browser | 9.22 | — |
| Opera | Opera Browser | 9.23 | — |
| Opera | Opera Browser | 9.24 | — |
| Opera | Opera Browser | 9.25 | — |
| Opera | Opera Browser | 9.26 | — |
| Opera | Opera Browser | 9.27 | — |
Showing 50 of 70 affected configurations. See NVD for the full list.
References
- http://secunia.com/advisories/40250Vendor Advisory
- http://www.opera.com/support/search/view/960/Vendor Advisory
- http://www.vupen.com/english/advisories/2010/1529Patch, Vendor Advisory
- http://www.vupen.com/english/advisories/2010/1673Patch, Vendor Advisory
- http://secunia.com/advisories/40250Vendor Advisory
- http://www.opera.com/support/search/view/960/Vendor Advisory
- http://www.vupen.com/english/advisories/2010/1529Patch, Vendor Advisory
- http://www.vupen.com/english/advisories/2010/1673Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-2661?
How severe is CVE-2010-2661?
How do I fix CVE-2010-2661?
Are you affected by CVE-2010-2661?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST