CVE-2009-4071

Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
VendorProductVersion
operaopera_browser
𝑥
≤ 10.10
operaopera_browser
7.0
operaopera_browser
7.23
operaopera_browser
7.53
operaopera_browser
7.54
operaopera_browser
7.60
operaopera_browser
8.0
operaopera_browser
8.01
operaopera_browser
8.02
operaopera_browser
8.50
operaopera_browser
8.51
operaopera_browser
8.52
operaopera_browser
8.53
operaopera_browser
8.54
operaopera_browser
9.0
operaopera_browser
9.01
operaopera_browser
9.02
operaopera_browser
9.10
operaopera_browser
9.12
operaopera_browser
9.20
operaopera_browser
9.21
operaopera_browser
9.22
operaopera_browser
9.51
operaopera_browser
9.52
operaopera_browser
9.64
operaopera_browser
10.00
operaopera_browser
10.00:beta_3
operaopera_browser
10.01
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/60527
http://secunia.com/advisories/37469
http://www.opera.com/docs/changelogs/mac/1010/
http://www.opera.com/docs/changelogs/unix/1010/
http://www.opera.com/docs/changelogs/windows/1010/
http://www.opera.com/support/kb/view/941/
http://www.securityfocus.com/bid/37089
http://www.vupen.com/english/advisories/2009/3297
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6385
http://osvdb.org/60527
http://secunia.com/advisories/37469
http://www.opera.com/docs/changelogs/mac/1010/
http://www.opera.com/docs/changelogs/unix/1010/
http://www.opera.com/docs/changelogs/windows/1010/
http://www.opera.com/support/kb/view/941/
http://www.securityfocus.com/bid/37089
http://www.vupen.com/english/advisories/2009/3297
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6385