CVE-2003-1397

The PluginContext object of Opera 6.05 and 7.0 allows remote attackers to cause a denial of service (crash) via an HTTP request containing a long string that gets passed to the ShowDocument method.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1397
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
opera / opera_browser	7.01	7.01.x
opera / opera_browser	6.05	6.05.x
opera / opera_browser	7.0-beta1_v2	7.0-beta1_v2.x
opera / opera_browser	7.0-beta2	7.0-beta2.x
opera / opera_browser	7.0-beta1	7.0-beta1.x
opera / opera_browser	7.0	7.0.x

http://securityreason.com/securityalert/3255
http://www.securityfocus.com/archive/1/311214
http://www.securityfocus.com/bid/6814
https://exchange.xforce.ibmcloud.com/vulnerabilities/11280

Vulnerability Database

289,697

CVE-2003-1397