CVE-2012-6467

EXPLOITED IN THE WILD

Opera < 12.10 - Phishing Attack via Inline Element Internet Shortcut Handling

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2012-6467 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).

Description

Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other inline element, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site, as exploited in the wild in November 2012.

References (3)

Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.opera.com/support/kb/view/1034/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/57132
Vendor Advisory x_refsource_confirm
http://www.opera.com/docs/changelogs/unified/1210/

Scores

EPSS 0.0024
EPSS Percentile 47.8%

Details

VulnCheck KEV 2013-01-02
InTheWild.io 2015-09-29
Status published
Products (26)
opera/opera_browser 1.00
opera/opera_browser 2.00
opera/opera_browser 2.10 (4 CPE variants)
opera/opera_browser 2.12
opera/opera_browser 3.00 (2 CPE variants)
opera/opera_browser 3.10
opera/opera_browser 3.21
opera/opera_browser 3.50
opera/opera_browser 3.51
opera/opera_browser 3.60
... and 16 more
Published Jan 02, 2013
Tracked Since Feb 18, 2026