← back
CVE-2005-2405

CVE-2005-2405

EPSS 2.8%
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/15870http://securitytracker.com/id?1014592https://exchange.xforce.ibmcloud.com/vulnerabilities/21784http://www.opera.com/linux/changelogs/802/http://www.securityfocus.com/bid/14402http://www.vupen.com/english/advisories/2005/1251