Unrated severityNVD Advisory· Published Aug 1, 2005· Updated Apr 16, 2026

CVE-2005-2405

Description

Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.

Affected products

Opera/Opera Browser
cpe:2.3:a:opera:opera_browser:8.01:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/15870nvdBroken LinkPatch
www.opera.com/linux/changelogs/802/nvdBroken LinkPatch
securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/14402nvdBroken LinkThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/21784nvdThird Party AdvisoryVDB Entry
www.vupen.com/english/advisories/2005/1251nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000