CVE-2008-4794: Input Validation
First published: Thu Oct 30 2008(Updated: )
Opera before 9.62 allows remote attackers to execute arbitrary commands via the History Search results page, a different vulnerability than CVE-2008-4696.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Opera | <=9.61 | |
| Opera | =5..10 | |
| Opera | =5.0 | |
| Opera | =5.1 | |
| Opera | =5.2 | |
| Opera | =5.3 | |
| Opera | =5.4 | |
| Opera | =5.5 | |
| Opera | =5.6 | |
| Opera | =5.7 | |
| Opera | =5.8 | |
| Opera | =5.9 | |
| Opera | =5.11 | |
| Opera | =5.12 | |
| Opera | =6-beta_1 | |
| Opera | =6.0 | |
| Opera | =6.01 | |
| Opera | =6.02 | |
| Opera | =6.03 | |
| Opera | =6.04 | |
| Opera | =6.05 | |
| Opera | =6.06 | |
| Opera | =7-beta_1 | |
| Opera | =7-beta_1.2 | |
| Opera | =7.0 | |
| Opera | =7.0-beta_2 | |
| Opera | =7.01 | |
| Opera | =7.02 | |
| Opera | =7.03 | |
| Opera | =7.10 | |
| Opera | =7.11 | |
| Opera | =7.20 | |
| Opera | =7.20-beta7 | |
| Opera | =7.21 | |
| Opera | =7.22 | |
| Opera | =7.23 | |
| Opera | =7.50 | |
| Opera | =7.50-beta_1 | |
| Opera | =7.51 | |
| Opera | =7.52 | |
| Opera | =7.53 | |
| Opera | =7.54 | |
| Opera | =7.54-update_1 | |
| Opera | =7.54-update_2 | |
| Opera | =8.0 | |
| Opera | =8.0-beta_1 | |
| Opera | =8.0-beta_2 | |
| Opera | =8.0-beta_3 | |
| Opera | =8.01 | |
| Opera | =8.02 | |
| Opera | =8.50 | |
| Opera | =8.51 | |
| Opera | =8.52 | |
| Opera | =8.53 | |
| Opera | =8.54 | |
| Opera | =9.0 | |
| Opera | =9.0-beta_1 | |
| Opera | =9.0-beta_2 | |
| Opera | =9.01 | |
| Opera | =9.02 | |
| Opera | =9.10 | |
| Opera | =9.20 | |
| Opera | =9.20-beta_1 | |
| Opera | =9.21 | |
| Opera | =9.22 | |
| Opera | =9.23 | |
| Opera | =9.24 | |
| Opera | =9.25 | |
| Opera | =9.26 | |
| Opera | =9.27 | |
| Opera | =9.50 | |
| Opera | =9.50-beta_2 | |
| Opera | =9.51 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html
- http://secunia.com/advisories/32538
- http://security.gentoo.org/glsa/glsa-200811-01.xml
- http://www.opera.com/support/search/view/906/
- http://www.securityfocus.com/bid/31991
- http://www.securitytracker.com/id?1021128
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46219
Frequently Asked Questions
What is the severity of CVE-2008-4794?
CVE-2008-4794 has been classified as a medium severity vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2008-4794?
To mitigate CVE-2008-4794, users should upgrade to Opera version 9.62 or later.
What are the affected versions for CVE-2008-4794?
CVE-2008-4794 affects Opera versions prior to 9.62, including all versions from 5.0 up to 9.61.
Can CVE-2008-4794 be exploited remotely?
Yes, CVE-2008-4794 can be exploited remotely through the History Search results page.
Is there a workaround for CVE-2008-4794?
There are no known workarounds for CVE-2008-4794, so upgrading to a fixed version is recommended.
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/opera
- canonical/opera
- version/opera/9.61
- version/opera/5..10
- version/opera/5.0
- version/opera/5.1
- version/opera/5.2
- version/opera/5.3
- version/opera/5.4
- version/opera/5.5
- version/opera/5.6
- version/opera/5.7
- version/opera/5.8
- version/opera/5.9
- version/opera/5.11
- version/opera/5.12
- version/opera/6-beta_1
- version/opera/6.0
- version/opera/6.01
- version/opera/6.02
- version/opera/6.03
- version/opera/6.04
- version/opera/6.05
- version/opera/6.06
- version/opera/7-beta_1
- version/opera/7-beta_1.2
- version/opera/7.0
- version/opera/7.0-beta_2
- version/opera/7.01
- version/opera/7.02
- version/opera/7.03
- version/opera/7.10
- version/opera/7.11
- version/opera/7.20
- version/opera/7.20-beta7
- version/opera/7.21
- version/opera/7.22
- version/opera/7.23
- version/opera/7.50
- version/opera/7.50-beta_1
- version/opera/7.51
- version/opera/7.52
- version/opera/7.53
- version/opera/7.54
- version/opera/7.54-update_1
- version/opera/7.54-update_2
- version/opera/8.0
- version/opera/8.0-beta_1
- version/opera/8.0-beta_2
- version/opera/8.0-beta_3
- version/opera/8.01
- version/opera/8.02
- version/opera/8.50
- version/opera/8.51
- version/opera/8.52
- version/opera/8.53
- version/opera/8.54
- version/opera/9.0
- version/opera/9.0-beta_1
- version/opera/9.0-beta_2
- version/opera/9.01
- version/opera/9.02
- version/opera/9.10
- version/opera/9.20
- version/opera/9.20-beta_1
- version/opera/9.21
- version/opera/9.22
- version/opera/9.23
- version/opera/9.24
- version/opera/9.25
- version/opera/9.26
- version/opera/9.27
- version/opera/9.50
- version/opera/9.50-beta_2
- version/opera/9.51