Unrated severityNVD Advisory· Published Oct 8, 2007· Updated Jun 16, 2026
CVE-2007-5276
CVE-2007-5276
Description
Opera 9 drops DNS pins based on failed connections to irrelevant TCP ports, which makes it easier for remote attackers to conduct DNS rebinding attacks, as demonstrated by a port 81 URL in an IMG SRC, when the DNS pin had been established for a session on port 80.
Affected products
2- cpe:2.3:a:opera:opera_browser:9.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- crypto.stanford.edu/dns/dns-rebinding.pdfnvdTechnical DescriptionThird Party Advisory
- osvdb.org/45526nvdBroken Link
News mentions
0No linked articles in our index yet.