{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"<p>Opera versions ant\u00e9rieures \u00e0 10.63.</p>","content":"## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 report\u00e9es sur le navigateur Web\nOpera. Un utilisateur malveillant peut, en exploitant ces\nvuln\u00e9rabilit\u00e9s, conduire des attaques de type injection de code\nindirecte \u00e0 distance, modifier l'affichage de l'URL visit\u00e9e (usurpation\nd'affichage), faire ex\u00e9cuter des scripts hors de leurs contextes de\ns\u00e9curit\u00e9, ou intercepter des donn\u00e9es pr\u00e9sentes dans un contexte\nnormalement non accessible.\n\n## Solution\n\nSe r\u00e9f\u00e9rer aux bulletins de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n\nLa version 10.63 corrige ces vuln\u00e9rabilit\u00e9s.\n","cves":[{"name":"CVE-2010-4048","url":"https://www.cve.org/CVERecord?id=CVE-2010-4048"},{"name":"CVE-2010-4047","url":"https://www.cve.org/CVERecord?id=CVE-2010-4047"},{"name":"CVE-2010-4050","url":"https://www.cve.org/CVERecord?id=CVE-2010-4050"},{"name":"CVE-2010-4045","url":"https://www.cve.org/CVERecord?id=CVE-2010-4045"},{"name":"CVE-2010-4049","url":"https://www.cve.org/CVERecord?id=CVE-2010-4049"},{"name":"CVE-2010-4044","url":"https://www.cve.org/CVERecord?id=CVE-2010-4044"},{"name":"CVE-2010-4046","url":"https://www.cve.org/CVERecord?id=CVE-2010-4046"},{"name":"CVE-2010-4043","url":"https://www.cve.org/CVERecord?id=CVE-2010-4043"}],"links":[{"title":"Bulletins de s\u00e9curit\u00e9 Opera :","url":"http://www.opera.com/support/kb/view/973/"},{"title":"Bulletins de s\u00e9curit\u00e9 Opera :","url":"http://www.opera.com/support/kb/view/971/"},{"title":"Notes de mise \u00e0 jour Mac Opera 10.63 :","url":"http://www.opera.com/docs/changelogs/mac/1063/"},{"title":"Notes de mise \u00e0 jour Unix Opera 10.63 :","url":"http://www.opera.com/docs/changelogs/unix/1063/"},{"title":"Notes de mise \u00e0 jour Windows Opera 10.63 :","url":"http://www.opera.com/docs/changelogs/windows/1063/"},{"title":"T\u00e9l\u00e9chargement d'Opera :","url":"http://www.opera.com/download/browser/"},{"title":"Bulletins de s\u00e9curit\u00e9 Opera :","url":"http://www.opera.com/support/kb/view/976/"},{"title":"Bulletins de s\u00e9curit\u00e9 Opera :","url":"http://www.opera.com/support/kb/view/972/"},{"title":"Bulletins de s\u00e9curit\u00e9 Opera :","url":"http://www.opera.com/support/kb/view/974/"}],"reference":"CERTA-2010-AVI-498","revisions":[{"description":"version initiale.","revision_date":"2010-10-13T00:00:00.000000"},{"description":"ajout des r\u00e9f\u00e9rences CVE.","revision_date":"2010-10-27T00:00:00.000000"}],"risks":[{"description":"Injection de code indirecte \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"Une mise \u00e0 jour du navigateur Web Opera corrige de multiples\nvuln\u00e9rabilit\u00e9s, permettant notamment le contournement de politique de\ns\u00e9curit\u00e9, la conduite d'attaques de type \"injection de code indirecte\".\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Opera","vendor_advisories":[{"published_at":null,"title":"Note de mise \u00e0 jour Opera publi\u00e9e le 12 octobre 2010","url":null}]}