CVE-2005-3750
Opera < 8.51 - Remote Code Execution via Shell Metacharacters in URL
Title source: llmDescription
Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera.
References (13)
Core 13
Core References
Broken Link x_refsource_confirm
http://www.opera.com/docs/changelogs/linux/851/
Third Party Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_28_sr.html
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18111
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/199
Broken Link vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2519
Broken Link, Patch vdb-entry
x_refsource_osvdb
http://www.osvdb.org/21003
Broken Link, Patch, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015253
Broken Link, Patch, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15521
Broken Link, Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/417393/30/0/threaded
Broken Link, Patch x_refsource_misc
http://secunia.com/secunia_research/2005-57/advisory/
Broken Link, Patch third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16907
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200512-10.xml
Broken Link, Patch, Vendor Advisory mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0677.html
Scores
EPSS
0.0762
EPSS Percentile
92.0%
Details
CWE
CWE-74
Status
published
Products (1)
opera/opera_browser
< 8.51
Published
Nov 22, 2005
Tracked Since
Feb 18, 2026