CVE-2003-0870

Heap-based buffer overflow in Opera 7.11 and 7.20 allows remote attackers to execute arbitrary code via an HREF with a large number of escaped characters in the server name.

Published: Nov 17, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0870
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
opera / opera_browser	7.20	7.20.x
opera / opera_browser	7.11	7.11.x

http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0016.html
http://www.atstake.com/research/advisories/2003/a102003-1.txt
http://www.securityfocus.com/bid/8853
https://exchange.xforce.ibmcloud.com/vulnerabilities/13458

Vulnerability Database

289,697

CVE-2003-0870