Oval Definition:	oval:org.mitre.oval:def:19945
Revision Date: 2014-01-13 Version: 4 Title: Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML in Opera before 12.10 Description: Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an unspecified sequence of loading of documents and loading of data: URLs. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2012-6463 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP Product(s): Opera Browser Definition Synopsis Opera Browser is installed AND Check Opera vulnerability for different versions Check Opera vulnerability for versions less or equals then 11.0 Check if HKLM\SOFTWARE\Classes\Applications\Opera.exe\shell\open\command exists AND Check if Opera version is less than 12.10 (for versions less or equals then 11.0) OR Check if Opera version is less than 12.10 (for versions greater then 11.0)
BACK