Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Opera Web Browser heap overflow vulnerability

Opera Web Browser heap overflow vulnerability

by Mario Miri on May 16th, 2003 Heap corruption attack is possible on Opera Web Browser versions 7.10 and prior. Due to insufficient bounds checking of filename extension buffer, it is possible to trigger denial of service attack.


Vulnerable:
Opera Software Opera Web Browser 6.0 win32
Opera Software Opera Web Browser 6.0.1 win32
Opera Software Opera Web Browser 6.0.2 win32
Opera Software Opera Web Browser 6.0.3 win32
Opera Software Opera Web Browser 6.0.4 win32
Opera Software Opera Web Browser 6.0.5 win32
Opera Software Opera Web Browser 7.0 win32
Opera Software Opera Web Browser 7.0 3win32
Opera Software Opera Web Browser 7.0 2win32
Opera Software Opera Web Browser 7.0 1win32
Opera Software Opera Web Browser 7.10

Exploit / Proof of Concept:
http://download.xatrix.org/prf/opera3.txt


Solution:
Currently there are no vendor supplied patches.


Discovered by:
imagine
nesumin of Operash


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »