CVE-2004-1489

Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-1489
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.6
AV:N/AC:H/Au:N/C:P/I:N/A:N

CWEs:

CWE-668

Affected Software
References

Software	From	Fixed in
opera / opera_browser	-	7.54.x

http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029044.html
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml
http://www.opera.com/linux/changelogs/754u1/

Vulnerability Database

289,697

CVE-2004-1489