CVE-2009-3049

EUVD-2009-3033
Opera before 10.00 does not properly display all characters in Internationalized Domain Names (IDN) in the address bar, which allows remote attackers to spoof URLs and conduct phishing attacks, related to Unicode and Punycode.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
operaopera_browser
𝑥
≤ 10.00
operaopera_browser
7.0
operaopera_browser
7.23
operaopera_browser
7.53
operaopera_browser
7.54
operaopera_browser
7.60
operaopera_browser
8.0
operaopera_browser
8.01
operaopera_browser
8.02
operaopera_browser
8.50
operaopera_browser
8.51
operaopera_browser
8.52
operaopera_browser
8.53
operaopera_browser
8.54
operaopera_browser
9.0
operaopera_browser
9.01
operaopera_browser
9.02
operaopera_browser
9.10
operaopera_browser
9.12
operaopera_browser
9.20
operaopera_browser
9.21
operaopera_browser
9.22
operaopera_browser
9.51
operaopera_browser
9.52
operaopera_browser
9.64
𝑥
= Vulnerable software versions
References
http://www.opera.com/docs/changelogs/freebsd/1000/
http://www.opera.com/docs/changelogs/linux/1000/
http://www.opera.com/docs/changelogs/mac/1000/
http://www.opera.com/docs/changelogs/solaris/1000/
http://www.opera.com/docs/changelogs/windows/1000/
http://www.opera.com/support/kb/view/932/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6235
http://www.opera.com/docs/changelogs/freebsd/1000/
http://www.opera.com/docs/changelogs/linux/1000/
http://www.opera.com/docs/changelogs/mac/1000/
http://www.opera.com/docs/changelogs/solaris/1000/
http://www.opera.com/docs/changelogs/windows/1000/
http://www.opera.com/support/kb/view/932/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6235