Opera, possibly before 9.25, uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an SSL tampering attack.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Opera_browser | Opera | 7.23 | 7.23 |
Opera_browser | Opera | 9.02 | 9.02 |
Opera_browser | Opera | 7.53 | 7.53 |
Opera_browser | Opera | 8.50 | 8.50 |
Opera_browser | Opera | 8.53 | 8.53 |
Opera_browser | Opera | 9.12 | 9.12 |
Opera_browser | Opera | 8.0 | 8.0 |
Opera_browser | Opera | * | 9.22 |
Opera_browser | Opera | 8.54 | 8.54 |
Opera_browser | Opera | 8.02 | 8.02 |
Opera_browser | Opera | 9.20 | 9.20 |
Opera_browser | Opera | 9.21 | 9.21 |
Opera_browser | Opera | 8.51 | 8.51 |
Opera_browser | Opera | 7.60 | 7.60 |
Opera_browser | Opera | 7.54 | 7.54 |
Opera_browser | Opera | 9.01 | 9.01 |
Opera_browser | Opera | 9.0 | 9.0 |
Opera_browser | Opera | 9.10 | 9.10 |
Opera_browser | Opera | 8.52 | 8.52 |
Opera_browser | Opera | 8.01 | 8.01 |
Opera_browser | Opera | 7.0 | 7.0 |