CVE-2010-5072

Opera 10.5 - Information Disclosure via getComputedStyle Method

Title source: llm
STIX 2.1

Description

The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.

References (1)

Core 1
Core References
Exploit x_refsource_misc
http://w2spconf.com/2010/papers/p26.pdf

Scores

EPSS 0.0023
EPSS Percentile 45.7%

Details

CWE
CWE-264
Status published
Products (1)
opera/opera_browser 10.50
Published Dec 07, 2011
Tracked Since Feb 18, 2026