Cookie Vulnerability in Opera Browser Affecting User Privacy
CVE-2013-3210

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 19 April 2013

Summary

Opera versions prior to 12.15 are susceptible to a cookie injection vulnerability due to inadequate blocking of top-level domains in Set-Cookie headers. This flaw allows remote attackers to potentially gather sensitive data by controlling an alternative website within the same top-level domain. Attackers can exploit this weakness to access personal information, undermining user privacy and security.

References

http://www.opera.com/security/advisory/1047

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/unified/1215/

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 19, 2013