CVE-2009-3049

Opera before 10.00 does not properly display all characters in Internationalized Domain Names (IDN) in the address bar, which allows remote attackers to spoof URLs and conduct phishing attacks, related to Unicode and Punycode.

Published: Sep 2, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-3049
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
opera / opera_browser	7.23	7.23.x
opera / opera_browser	9.02	9.02.x
opera / opera_browser	7.53	7.53.x
opera / opera_browser	8.50	8.50.x
opera / opera_browser	9.51	9.51.x
opera / opera_browser	8.53	8.53.x
opera / opera_browser	9.12	9.12.x
opera / opera_browser	8.0	8.0.x
opera / opera_browser	8.54	8.54.x
opera / opera_browser	8.02	8.02.x
opera / opera_browser	9.20	9.20.x
opera / opera_browser	9.21	9.21.x
opera / opera_browser	8.51	8.51.x
opera / opera_browser	9.64	9.64.x
opera / opera_browser	7.60	7.60.x
opera / opera_browser	7.54	7.54.x
opera / opera_browser	9.22	9.22.x
opera / opera_browser	9.01	9.01.x
opera / opera_browser	9.0	9.0.x
opera / opera_browser	9.10	9.10.x
opera / opera_browser	-	10.00.x
opera / opera_browser	8.52	8.52.x
opera / opera_browser	8.01	8.01.x
opera / opera_browser	9.52	9.52.x
opera / opera_browser	7.0	7.0.x

Vulnerability Database

290,206

CVE-2009-3049