First published: Mon Jul 14 2008(Updated: )
Opera allows web sites to set cookies for country-specific top-level domains that have DNS A records, such as co.tv, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking."
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opera Opera |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.