CVE-2010-3020 Information

Description

The news-feed preview feature in Opera before 10.61 does not properly remove scripts which allows remote attackers to force subscriptions to arbitrary feeds via crafted content.

Reference

http://www.opera.com/docs/changelogs/mac/1061/ http://www.opera.com/docs/changelogs/unix/1061/ http://www.opera.com/docs/changelogs/windows/1061/ http://www.opera.com/support/kb/view/968/ https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A12073