| Revision Date: | 2014-03-17 | Version: | 7 |
| Title: | Opera before 10.00 does not properly handle a \0 character or invalid wildcard character |
| Description: | Opera before 10.00 does not properly handle a (1) '\0' character or (2) invalid wildcard character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2009-3044
|
| Platform(s): | Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Opera Browser
|
| Definition Synopsis |
| Opera Browser is installed AND Opera.exe version less than 10.0
AND Check if HKLM\SOFTWARE\Classes\Applications\Opera.exe\shell\open\command exists
|