CVE-2006-3331 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-3331
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3331

Description: Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27449 SUSE http://www.novell.com/linux/security/advisories/2006_38_opera.html ST 1016406 SREASON http://securityreason.com/securityalert/1177 SAID Secunia Advisory: SA20897 Secunia Advisory: SA19480 MISC http://secunia.com/secunia_research/2006-49/advisory/ BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/438634/100/0/threaded BID 18692

Return to the previous page.