CVE-2005-2405

N/A Unknown
Published: August 01, 2005 Modified: April 16, 2026
View on NVD

Description

Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/15870
Source: cve@mitre.org
Broken Link Patch
http://securitytracker.com/id?1014592
Source: cve@mitre.org
Broken Link Third Party Advisory VDB Entry
http://www.opera.com/linux/changelogs/802/
Source: cve@mitre.org
Broken Link Patch
http://www.securityfocus.com/bid/14402
Source: cve@mitre.org
Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/1251
Source: cve@mitre.org
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/21784
Source: cve@mitre.org
Third Party Advisory VDB Entry
http://secunia.com/advisories/15870
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Patch
http://securitytracker.com/id?1014592
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Third Party Advisory VDB Entry
http://www.opera.com/linux/changelogs/802/
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Patch
http://www.securityfocus.com/bid/14402
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/1251
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/21784
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry

12 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
1.3%
80th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-20

Affected Vendors

opera

Related CVEs

CVE-2026-40332 N/A
CVE-2026-40281 10.0
CVE-2026-40251 N/A
CVE-2026-40243 N/A
CVE-2026-40197 N/A