CVE-2013-3210

Currently unrated

Key Information:

Vendor: Opera
Status: Opera Browser
Vendor: CVE Published:; 19 April 2013

Summary

Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the same top-level domain.

References

http://www.opera.com/security/advisory/1047

x_refsource_CONFIRM

http://www.opera.com/docs/changelogs/unified/1215/

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 19, 2013