cpe:/a:opera_software:opera_web_browser:7.54 CVE-2004-1157 2005-01-10T00:00:00.000-05:00 2008-09-05T16:40:33.310-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2004-01-01T00:00:00.000-05:00 ALLOWS_OTHER_ACCESS SECUNIA 13253 GENTOO GLSA-200502-17 MISC http://secunia.com/multiple_browsers_window_injection_vulnerability_test/ MISC http://secunia.com/secunia_research/2004-13/advisory/ Opera 7.x up to 7.54, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.