What is the severity of CVE-2009-2351?

CVE-2009-2351 has a medium severity rating due to its potential for causing cross-site scripting (XSS) attacks.

How do I fix CVE-2009-2351?

To fix CVE-2009-2351, users are advised to upgrade to a later version of the Opera browser that addresses the vulnerability.

What browsers are affected by CVE-2009-2351?

CVE-2009-2351 affects Opera versions 9.52 and earlier.

What type of attack is enabled by CVE-2009-2351?

CVE-2009-2351 enables remote attackers to conduct cross-site scripting (XSS) attacks.

Can exploiting CVE-2009-2351 lead to data theft?

Yes, exploiting CVE-2009-2351 can potentially lead to data theft or malicious actions if an XSS attack is successful.

Vulnerability/
CVE-2009-2351

medium

4.3

CWE

7/7/2009

7/8/2024

CVE-2009-2351: XSS

First published: Tue Jul 07 2009(Updated: )

Opera 9.52 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312. NOTE: it was later reported that 10.00 Beta 3 Build 1699 is also affected.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Opera	=7.23
Opera	=9.02
Opera	=7.53
Opera	=8.50
Opera	=9.51
Opera	=8.53
Opera	=9.12
Opera	=8.0
Opera	<=9.52
Opera	=8.54
Opera	=8.02
Opera	=9.20
Opera	=9.21
Opera	=8.51
Opera	=7.60
Opera	=7.54
Opera	=9.22
Opera	=9.01
Opera	=9.0
Opera	=9.10
Opera	=8.52
Opera	=10.00-beta_3
Opera	=8.01
Opera	=7.0
Web Browser for Android	<=9.52
Web Browser for Android	=7.0
Web Browser for Android	=7.23
Web Browser for Android	=7.53
Web Browser for Android	=7.54
Web Browser for Android	=7.60
Web Browser for Android	=8.0
Web Browser for Android	=8.01
Web Browser for Android	=8.02
Web Browser for Android	=8.50
Web Browser for Android	=8.51
Web Browser for Android	=8.52
Web Browser for Android	=8.53
Web Browser for Android	=8.54
Web Browser for Android	=9.0
Web Browser for Android	=9.01
Web Browser for Android	=9.02
Web Browser for Android	=9.10
Web Browser for Android	=9.12
Web Browser for Android	=9.20
Web Browser for Android	=9.21
Web Browser for Android	=9.22
Web Browser for Android	=9.51
Web Browser for Android	=10.00-beta_3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2351?
CVE-2009-2351 has a medium severity rating due to its potential for causing cross-site scripting (XSS) attacks.
How do I fix CVE-2009-2351?
To fix CVE-2009-2351, users are advised to upgrade to a later version of the Opera browser that addresses the vulnerability.
What browsers are affected by CVE-2009-2351?
CVE-2009-2351 affects Opera versions 9.52 and earlier.
What type of attack is enabled by CVE-2009-2351?
CVE-2009-2351 enables remote attackers to conduct cross-site scripting (XSS) attacks.
Can exploiting CVE-2009-2351 lead to data theft?
Yes, exploiting CVE-2009-2351 can potentially lead to data theft or malicious actions if an XSS attack is successful.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/author
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
collector/nvd-historical
agent/software-canonical-lookup-request
agent/weakness
agent/tags
collector/nvd-index
agent/softwarecombine
vendor/opera
canonical/opera
version/opera/7.23
version/opera/9.02
version/opera/7.53
version/opera/8.50
version/opera/9.51
version/opera/8.53
version/opera/9.12
version/opera/8.0
version/opera/9.52
version/opera/8.54
version/opera/8.02
version/opera/9.20
version/opera/9.21
version/opera/8.51
version/opera/7.60
version/opera/7.54
version/opera/9.22
version/opera/9.01
version/opera/9.0
version/opera/9.10
version/opera/8.52
version/opera/10.00-beta_3
version/opera/8.01
version/opera/7.0
canonical/web browser for android
version/web browser for android/9.52
version/web browser for android/7.0
version/web browser for android/7.23
version/web browser for android/7.53
version/web browser for android/7.54
version/web browser for android/7.60
version/web browser for android/8.0
version/web browser for android/8.01
version/web browser for android/8.02
version/web browser for android/8.50
version/web browser for android/8.51
version/web browser for android/8.52
version/web browser for android/8.53
version/web browser for android/8.54
version/web browser for android/9.0
version/web browser for android/9.01
version/web browser for android/9.02
version/web browser for android/9.10
version/web browser for android/9.12
version/web browser for android/9.20
version/web browser for android/9.21
version/web browser for android/9.22
version/web browser for android/9.51
version/web browser for android/10.00-beta_3