CVE-2008-5178

Published: Nov 20, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Heap-based buffer overflow in Opera 9.62 on Windows allows remote attackers to execute arbitrary code via a long file:// URI. NOTE: this might overlap CVE-2008-5680.

Affected (1)

Products: Opera: Opera

Opera

1 product

Opera

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Opera Opera	Version 9.62

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (20)

http://archives.neohapsis.com/archives/bugtraq/2008-11/0110.html

Source: cve@mitre.org

http://osvdb.org/49882

Source: cve@mitre.org

http://secunia.com/advisories/32752

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34294

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200903-30.xml

Source: cve@mitre.org

http://www.opera.com/support/kb/view/922/

Source: cve@mitre.org

http://www.securityfocus.com/bid/32323

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2008/3183

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/46653

Source: cve@mitre.org

https://www.exploit-db.com/exploits/7135

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2008-11/0110.html