Skip to main content

Exposure of Resource to Wrong Sphere

CVE-2004-1489

Severity Low
Score 2.6/10

Summary

Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.

  • HIGH
  • NETWORK
  • NONE
  • NONE
  • PARTIAL
  • NONE

CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

References

Advisory Timeline

  • Published