Low
CVSS 2.6
Overview
Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
CVE-2004-1490
Opera 7.54 and earlier allows remote attackers to spoof file types in the downlo...
Risk analysis
This vulnerability is rated 🟢 LOW.
- CVSS: 2.6 (LOW)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.