CVE-2016-5101

HIGH

Opera Mail - Improper Access Control

Title source: rule

Description

Unspecified vulnerability in Opera Mail before 2016-02-16 on Windows allows user-assisted remote attackers to execute arbitrary code via a crafted e-mail message.

References (2)

[Vendor Advisory] http://www.opera.com/blogs/security/2016/02/opera-12-and-opera-mail-security-update/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91507

Scores

CVSS v3 8.8

EPSS 0.0106

EPSS Percentile 77.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-284

Status draft

Affected Products (1)

opera/opera_mail

Timeline

Published Jun 29, 2016

Tracked Since Feb 18, 2026