Opera URL Redirection XSS

2003-02-26T04:51:55
ID OSVDB:17580
Type osvdb
Reporter Jakob Balle(jb@secunia.com)
Modified 2003-02-26T04:51:55

Description

Vulnerability Description

Opera contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the content of self generated temporary pages for displaying a redirection when the 'Automatic redirection' option is disabled. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Technical Description

This flaw has been originally fixed in version 6.12 for Linux and version 7.02 for Windows, but has been reintroduced in version 8.0 for Windows.

Solution Description

Upgrade to version 6.12 (Linux) or 8.01 (Windows) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Opera contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the content of self generated temporary pages for displaying a redirection when the 'Automatic redirection' option is disabled. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

References:

Vendor URL: http://www.opera.com/ Vendor Specific News/Changelog Entry: http://www.opera.com/linux/changelogs/612/ Vendor Specific News/Changelog Entry: http://www.opera.com/windows/changelogs/801/#security Vendor Specific News/Changelog Entry: http://www.opera.com/windows/changelogs/702/ Security Tracker: 1006178 Secunia Advisory ID:15423 Secunia Advisory ID:8155 Other Advisory URL: http://secunia.com/secunia_research/2003-1/exploit/ Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0096.html ISS X-Force ID: 11423 Bugtraq ID: 6962