CVE-2012-6472

Opera < 12.12 - Unprotected User Data Exposure via Profile Directory Weak Permissions

Title source: llm

Description

Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configuration file, or (4) possibly gain privileges by modifying or overwriting a configuration file.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.opera.com/docs/changelogs/unified/1212/

Vendor Advisory x_refsource_confirm

http://www.opera.com/support/kb/view/1039/

Scores

EPSS 0.0004

EPSS Percentile 12.4%

Details

CWE

CWE-264

Status published

Products (26)

opera/opera_browser 1.00

opera/opera_browser 2.00

opera/opera_browser 2.10 (4 CPE variants)

opera/opera_browser 2.12

opera/opera_browser 3.00 (2 CPE variants)

opera/opera_browser 3.10

opera/opera_browser 3.21

opera/opera_browser 3.50

opera/opera_browser 3.51

opera/opera_browser 3.60

... and 16 more

Published Jan 02, 2013

Tracked Since Feb 18, 2026