Description
Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Affected products
- opera / opera_browser7.20 – 7.20
- opera / opera_browser5.0 – 5.0
- opera / opera_browser5.02 – 5.02
- opera / opera_browser5.10 – 5.10
- opera / opera_browser5.11 – 5.11
- opera / opera_browser5.12 – 5.12
- opera / opera_browser6.0 – 6.0
- opera / opera_browser6.01 – 6.01
- opera / opera_browser6.02 – 6.02
- opera / opera_browser6.03 – 6.03
- opera / opera_browser6.04 – 6.04
- opera / opera_browser6.05 – 6.05
- opera / opera_browser6.06 – 6.06
- opera / opera_browser6.10 – 6.10
- opera / opera_browser7.0 – 7.0
- opera / opera_browser7.0 – 7.0
- opera / opera_browser7.0 – 7.0
- opera / opera_browser7.01 – 7.01
- opera / opera_browser7.02 – 7.02
- opera / opera_browser7.03 – 7.03
- opera / opera_browser7.10 – 7.10
- opera / opera_browser7.11 – 7.11
- opera / opera_browser7.21 – 7.21
- opera / opera_browser7.22 – 7.22
- opera / opera_browser7.23 – 7.23