Oval Definition:	oval:org.mitre.oval:def:6385
Revision Date: 2013-12-23 Version: 5 Title: Opera before 10.10 allows to obtain sensitive information and XSS attacks Description: Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via unspecified vectors. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2009-4071 Platform(s): Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP Product(s): Opera Browser Definition Synopsis Opera Browser is installed AND Opera.exe version less than 10.10 AND Check if HKLM\SOFTWARE\Classes\Applications\Opera.exe\shell\open\command exists
BACK