CVE-2010-2576 Information

Description

Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change which allows remote attackers to conduct clickjacking attacks and consequently execute arbitrary code via vectors involving (1) closing a tab or (2) hiding a tab a related issue to CVE-2005-2407.

Reference

http://secunia.com/secunia_research/2010-110/ http://www.opera.com/docs/changelogs/mac/1061/ http://www.opera.com/docs/changelogs/unix/1061/ http://www.opera.com/docs/changelogs/windows/1061/ http://www.opera.com/support/kb/view/967/ http://www.securityfocus.com/archive/1/513040/100/0/threaded https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A12084