CVE-2012-1926: Infoleak
First published: Wed Mar 28 2012(Updated: )
Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to unintended read access to history.state information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Web Browser for Android | <=11.61 | |
| Web Browser for Android | =5.0 | |
| Web Browser for Android | =5.0-beta2 | |
| Web Browser for Android | =5.0-beta3 | |
| Web Browser for Android | =5.0-beta4 | |
| Web Browser for Android | =5.0-beta5 | |
| Web Browser for Android | =5.0-beta6 | |
| Web Browser for Android | =5.0-beta7 | |
| Web Browser for Android | =5.0-beta8 | |
| Web Browser for Android | =5.02 | |
| Web Browser for Android | =5.10 | |
| Web Browser for Android | =5.11 | |
| Web Browser for Android | =5.12 | |
| Web Browser for Android | =6.0 | |
| Web Browser for Android | =6.0-beta1 | |
| Web Browser for Android | =6.0-beta2 | |
| Web Browser for Android | =6.0-beta3 | |
| Web Browser for Android | =6.0-tp1 | |
| Web Browser for Android | =6.0-tp2 | |
| Web Browser for Android | =6.0-tp3 | |
| Web Browser for Android | =6.1 | |
| Web Browser for Android | =6.01 | |
| Web Browser for Android | =6.1-beta1 | |
| Web Browser for Android | =6.02 | |
| Web Browser for Android | =6.03 | |
| Web Browser for Android | =6.04 | |
| Web Browser for Android | =6.05 | |
| Web Browser for Android | =6.06 | |
| Web Browser for Android | =6.11 | |
| Web Browser for Android | =6.12 | |
| Web Browser for Android | =7.0 | |
| Web Browser for Android | =7.0-beta1 | |
| Web Browser for Android | =7.0-beta1_v2 | |
| Web Browser for Android | =7.0-beta2 | |
| Web Browser for Android | =7.01 | |
| Web Browser for Android | =7.02 | |
| Web Browser for Android | =7.03 | |
| Web Browser for Android | =7.10 | |
| Web Browser for Android | =7.10-beta1 | |
| Web Browser for Android | =7.11 | |
| Web Browser for Android | =7.11-beta2 | |
| Web Browser for Android | =7.20 | |
| Web Browser for Android | =7.20-beta7 | |
| Web Browser for Android | =7.21 | |
| Web Browser for Android | =7.22 | |
| Web Browser for Android | =7.23 | |
| Web Browser for Android | =7.50 | |
| Web Browser for Android | =7.50-beta1 | |
| Web Browser for Android | =7.51 | |
| Web Browser for Android | =7.52 | |
| Web Browser for Android | =7.53 | |
| Web Browser for Android | =7.54 | |
| Web Browser for Android | =7.54-update1 | |
| Web Browser for Android | =7.54-update2 | |
| Web Browser for Android | =8.0 | |
| Web Browser for Android | =8.0-beta1 | |
| Web Browser for Android | =8.0-beta2 | |
| Web Browser for Android | =8.0-beta3 | |
| Web Browser for Android | =8.01 | |
| Web Browser for Android | =8.02 | |
| Web Browser for Android | =8.50 | |
| Web Browser for Android | =8.51 | |
| Web Browser for Android | =8.52 | |
| Web Browser for Android | =8.53 | |
| Web Browser for Android | =8.54 | |
| Web Browser for Android | =9.0 | |
| Web Browser for Android | =9.0-beta1 | |
| Web Browser for Android | =9.0-beta2 | |
| Web Browser for Android | =9.01 | |
| Web Browser for Android | =9.02 | |
| Web Browser for Android | =9.10 | |
| Web Browser for Android | =9.20 | |
| Web Browser for Android | =9.20-beta1 | |
| Web Browser for Android | =9.21 | |
| Web Browser for Android | =9.22 | |
| Web Browser for Android | =9.23 | |
| Web Browser for Android | =9.24 | |
| Web Browser for Android | =9.25 | |
| Web Browser for Android | =9.26 | |
| Web Browser for Android | =9.27 | |
| Web Browser for Android | =9.50 | |
| Web Browser for Android | =9.50-beta1 | |
| Web Browser for Android | =9.50-beta2 | |
| Web Browser for Android | =9.51 | |
| Web Browser for Android | =9.52 | |
| Web Browser for Android | =9.60 | |
| Web Browser for Android | =9.60-beta1 | |
| Web Browser for Android | =9.61 | |
| Web Browser for Android | =9.62 | |
| Web Browser for Android | =9.63 | |
| Web Browser for Android | =9.64 | |
| Web Browser for Android | =10.00 | |
| Web Browser for Android | =10.00-beta1 | |
| Web Browser for Android | =10.00-beta2 | |
| Web Browser for Android | =10.00-beta3 | |
| Web Browser for Android | =10.01 | |
| Web Browser for Android | =10.10 | |
| Web Browser for Android | =10.10-beta1 | |
| Web Browser for Android | =10.11 | |
| Web Browser for Android | =10.50 | |
| Web Browser for Android | =10.50-beta1 | |
| Web Browser for Android | =10.50-beta2 | |
| Web Browser for Android | =10.51 | |
| Web Browser for Android | =10.52 | |
| Web Browser for Android | =10.52-beta1 | |
| Web Browser for Android | =10.52-beta2 | |
| Web Browser for Android | =10.53 | |
| Web Browser for Android | =10.53-beta1 | |
| Web Browser for Android | =10.54 | |
| Web Browser for Android | =10.60 | |
| Web Browser for Android | =10.60-beta1 | |
| Web Browser for Android | =10.61 | |
| Web Browser for Android | =10.62 | |
| Web Browser for Android | =10.63 | |
| Web Browser for Android | =11.00 | |
| Web Browser for Android | =11.00-beta | |
| Web Browser for Android | =11.01 | |
| Web Browser for Android | =11.10 | |
| Web Browser for Android | =11.10-beta | |
| Web Browser for Android | =11.11 | |
| Web Browser for Android | =11.50 | |
| Web Browser for Android | =11.50-beta | |
| Web Browser for Android | =11.51 | |
| Web Browser for Android | =11.52 | |
| Web Browser for Android | =11.60 | |
| Web Browser for Android | =11.60-beta |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html
- http://osvdb.org/80622
- http://secunia.com/advisories/48535
- http://www.opera.com/docs/changelogs/mac/1162/
- http://www.opera.com/docs/changelogs/unix/1162/
- http://www.opera.com/docs/changelogs/windows/1162/
- http://www.opera.com/support/kb/view/1012/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74351
Frequently Asked Questions
What is the severity of CVE-2012-1926?
CVE-2012-1926 has been rated as having a medium severity due to the potential for attackers to bypass the Same Origin Policy.
How do I fix CVE-2012-1926?
To fix CVE-2012-1926, users should upgrade to Opera version 11.62 or later.
What can an attacker do with CVE-2012-1926?
An attacker can exploit CVE-2012-1926 to gain unauthorized access to history.state information through cross-domain frames.
Which versions of Opera are affected by CVE-2012-1926?
CVE-2012-1926 affects Opera versions prior to 11.62 and several earlier versions including 5.x, 6.x, 7.x, up to 11.61.
Is CVE-2012-1926 exploit mitigated in newer versions?
Yes, CVE-2012-1926 is mitigated in Opera version 11.62 and later, which addresses the vulnerability.
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/opera
- canonical/web browser for android
- version/web browser for android/11.61
- version/web browser for android/5.0
- version/web browser for android/5.0-beta2
- version/web browser for android/5.0-beta3
- version/web browser for android/5.0-beta4
- version/web browser for android/5.0-beta5
- version/web browser for android/5.0-beta6
- version/web browser for android/5.0-beta7
- version/web browser for android/5.0-beta8
- version/web browser for android/5.02
- version/web browser for android/5.10
- version/web browser for android/5.11
- version/web browser for android/5.12
- version/web browser for android/6.0
- version/web browser for android/6.0-beta1
- version/web browser for android/6.0-beta2
- version/web browser for android/6.0-beta3
- version/web browser for android/6.0-tp1
- version/web browser for android/6.0-tp2
- version/web browser for android/6.0-tp3
- version/web browser for android/6.1
- version/web browser for android/6.01
- version/web browser for android/6.1-beta1
- version/web browser for android/6.02
- version/web browser for android/6.03
- version/web browser for android/6.04
- version/web browser for android/6.05
- version/web browser for android/6.06
- version/web browser for android/6.11
- version/web browser for android/6.12
- version/web browser for android/7.0
- version/web browser for android/7.0-beta1
- version/web browser for android/7.0-beta1_v2
- version/web browser for android/7.0-beta2
- version/web browser for android/7.01
- version/web browser for android/7.02
- version/web browser for android/7.03
- version/web browser for android/7.10
- version/web browser for android/7.10-beta1
- version/web browser for android/7.11
- version/web browser for android/7.11-beta2
- version/web browser for android/7.20
- version/web browser for android/7.20-beta7
- version/web browser for android/7.21
- version/web browser for android/7.22
- version/web browser for android/7.23
- version/web browser for android/7.50
- version/web browser for android/7.50-beta1
- version/web browser for android/7.51
- version/web browser for android/7.52
- version/web browser for android/7.53
- version/web browser for android/7.54
- version/web browser for android/7.54-update1
- version/web browser for android/7.54-update2
- version/web browser for android/8.0
- version/web browser for android/8.0-beta1
- version/web browser for android/8.0-beta2
- version/web browser for android/8.0-beta3
- version/web browser for android/8.01
- version/web browser for android/8.02
- version/web browser for android/8.50
- version/web browser for android/8.51
- version/web browser for android/8.52
- version/web browser for android/8.53
- version/web browser for android/8.54
- version/web browser for android/9.0
- version/web browser for android/9.0-beta1
- version/web browser for android/9.0-beta2
- version/web browser for android/9.01
- version/web browser for android/9.02
- version/web browser for android/9.10
- version/web browser for android/9.20
- version/web browser for android/9.20-beta1
- version/web browser for android/9.21
- version/web browser for android/9.22
- version/web browser for android/9.23
- version/web browser for android/9.24
- version/web browser for android/9.25
- version/web browser for android/9.26
- version/web browser for android/9.27
- version/web browser for android/9.50
- version/web browser for android/9.50-beta1
- version/web browser for android/9.50-beta2
- version/web browser for android/9.51
- version/web browser for android/9.52
- version/web browser for android/9.60
- version/web browser for android/9.60-beta1
- version/web browser for android/9.61
- version/web browser for android/9.62
- version/web browser for android/9.63
- version/web browser for android/9.64
- version/web browser for android/10.00
- version/web browser for android/10.00-beta1
- version/web browser for android/10.00-beta2
- version/web browser for android/10.00-beta3
- version/web browser for android/10.01
- version/web browser for android/10.10
- version/web browser for android/10.10-beta1
- version/web browser for android/10.11
- version/web browser for android/10.50
- version/web browser for android/10.50-beta1
- version/web browser for android/10.50-beta2
- version/web browser for android/10.51
- version/web browser for android/10.52
- version/web browser for android/10.52-beta1
- version/web browser for android/10.52-beta2
- version/web browser for android/10.53
- version/web browser for android/10.53-beta1
- version/web browser for android/10.54
- version/web browser for android/10.60
- version/web browser for android/10.60-beta1
- version/web browser for android/10.61
- version/web browser for android/10.62
- version/web browser for android/10.63
- version/web browser for android/11.00
- version/web browser for android/11.00-beta
- version/web browser for android/11.01
- version/web browser for android/11.10
- version/web browser for android/11.10-beta
- version/web browser for android/11.11
- version/web browser for android/11.50
- version/web browser for android/11.50-beta
- version/web browser for android/11.51
- version/web browser for android/11.52
- version/web browser for android/11.60
- version/web browser for android/11.60-beta