|
|
CVE Reference: CVE-2004-0473 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2004-0473 |
|
|
Description: Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via (1) the "-f" option on Windows XP or (2) the "-n" option on Linux. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/16139 ST 1010142 IDEFENSE http://www.idefense.com/application/poi/display?id=104&type=vulnerabilities GENTOO http://security.gentoo.org/glsa/glsa-200405-19.xml CONFIRM http://www.opera.com/linux/changelogs/750/index.dml BID 10341 |
|
| Return to the previous page. |
