High severity8.8NVD Advisory· Published Sep 27, 2008· Updated Apr 23, 2026
CVE-2008-4197
CVE-2008-4197
Description
Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and menu commands, can produce argument strings that contain uninitialized memory, which might allow user-assisted remote attackers to execute arbitrary code or conduct other attacks via vectors related to activation of a shortcut.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- secunia.com/advisories/31549nvdBroken LinkVendor Advisory
- secunia.com/advisories/32538nvdBroken LinkVendor Advisory
- security.gentoo.org/glsa/glsa-200811-01.xmlnvdThird Party Advisory
- www.securityfocus.com/bid/30768nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/44552nvdThird Party AdvisoryVDB Entry
- bugs.gentoo.org/show_bug.cginvdIssue Tracking
- www.openwall.com/lists/oss-security/2008/09/19/2nvdMailing List
- www.openwall.com/lists/oss-security/2008/09/24/4nvdMailing List
- www.opera.com/docs/changelogs/freebsd/952/nvdBroken Link
- www.opera.com/docs/changelogs/linux/952/nvdBroken Link
- www.opera.com/docs/changelogs/solaris/952/nvdBroken Link
- www.opera.com/docs/changelogs/windows/952/nvdBroken Link
- www.opera.com/support/search/view/894/nvdBroken Link
- www.vupen.com/english/advisories/2008/2416nvdBroken Link
News mentions
0No linked articles in our index yet.