Opera 7 - Image Rendering HTML Injection

2003-02-04T00:00:00
ID EXPLOITPACK:ED79AD05F407EFC182ECB8C023A7ED5D
Type exploitpack
Reporter GreyMagic Software
Modified 2003-02-04T00:00:00

Description

Opera 7 - Image Rendering HTML Injection

                                        
                                            source: https://www.securityfocus.com/bid/6756/info

It has been reported that, when generating HTML to display images or embedded media, Opera does not correctly format the provided URL or sufficiently encode URLs to local files.

As a result of this lack of sanitization Opera is vulnerable to HTML injection attacks when handling local image or media files.

open("file://localhost/images/file.gif?\"><script>alert(location.href);</script>","","");