Arbitrary Code Execution Vulnerability in Opera 8.01

Arbitrary Code Execution Vulnerability in Opera 8.01

CVE-2005-2405 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.

Learn more about our User Device Pen Test.