Arbitrary Code Execution via Downloads Manager in Opera

Arbitrary Code Execution via Downloads Manager in Opera

CVE-2011-0450 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

The downloads manager in Opera before 11.01 on Windows does not properly determine the pathname of the filesystem-viewing application, which allows user-assisted remote attackers to execute arbitrary code via a crafted web site that hosts an executable file.

Learn more about our Web App Pen Testing.