X.509 Certificate Validation Flaw in Opera Browser by Opera Software
CVE-2012-6461

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 2 January 2013

Summary

The Opera Browser's implementation of X.509 certificate validation prior to version 12.10 contains a flaw that enables remote attackers to falsely indicate the success of revocation-status checks. By exploiting this vulnerability, an attacker can manipulate a scenario where a single checking service fails, leading to misleading perceptions of certificate validity and potentially endangering user security.

References

http://www.opera.com/docs/changelogs/unified/1210/

x_refsource_CONFIRM

http://www.opera.com/support/kb/view/1029/

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 2, 2013