← volver
CVE-2005-2405

CVE-2005-2405

EPSS 2.8%
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://secunia.com/advisories/15870http://securitytracker.com/id?1014592https://exchange.xforce.ibmcloud.com/vulnerabilities/21784http://www.opera.com/linux/changelogs/802/http://www.securityfocus.com/bid/14402http://www.vupen.com/english/advisories/2005/1251