iDefense Security Advisory 01.05.07: Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability

Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability iDefense Security Advisory 01.05.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 05, 2007 I. BACKGROUND Opera is a cross-platform web browser. More information is available at http://www.opera.com/ I...

Opera < 9.10 Multiple Vulnerabilities

The version of Opera installed on the remote host reportedly contains a heap overflow vulnerability that can be triggered when processing the DHT marker in a specially crafted JPEG image to crash the browser or possibly allow execution of arbitrary code on the affected host. In addition, another...

iDefense Security Advisory 01.05.07: Opera Software Opera Web Browser createSVGTransformFromMatrix Object Typecasting Vulnerability

Opera Software Opera Web Browser createSVGTransformFromMatrix Object Typecasting Vulnerability iDefense Security Advisory 01.05.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 05, 2007 I. BACKGROUND Opera is a cross-platform web browser. More information is available at...

opera -- multiple vulnerabilities

iDefense reports: The vulnerability specifically exists due to Opera improperly processing a JPEG DHT marker. The DHT marker is used to define a Huffman Table which is used for decoding the image data. An invalid number of index bytes in the DHT marker will trigger a heap overflow with partially...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, for Mozilla Firefox, Microsoft Internet Explorer 6 SP1, Google Chrome, Opera 8.5.4 build 770...

CVE-2007-0045

Multiple cross-site scripting XSS vulnerabilities in Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, for Mozilla Firefox, Microsoft Internet Explorer 6 SP1, Google Chrome, Opera 8.5.4 build 770...

CVE-2007-0048

Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service memory consumption via a long...

Cross site scripting

Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service memory consumption via a long...

CVE-2007-0048

Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service memory consumption via a long...

CVE-2007-0045

Multiple cross-site scripting XSS vulnerabilities in Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, for Mozilla Firefox, Microsoft Internet Explorer 6 SP1, Google Chrome, Opera 8.5.4 build 770...

Adobe Reader 9.1.3 Plugin - Cross-Site Scripting

Adobe Reader 9.1.3 Plugin - Cross-Site Scripting source: https://www.securityfocus.com/bid/21858/info Adobe Reader Plugin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

Adobe Reader 9.1.3 Plugin - Cross-Site Scripting

source: https://www.securityfocus.com/bid/21858/info Adobe Reader Plugin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Vz (Adp) Forum 2.0.3 - Remote Password Disclosure

SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/users/admin.txt As We see Admin name and hash...

Vz (Adp) Forum 2.0.3 - Remote Password Disclosure

Vz Adp Forum 2.0.3 - Remote Password Disclosure SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC:...

P-News 1.161.17 - user.dat Remote Password Disclosure

P-News 1.161.17 - user.dat Remote Password Disclosure P-News user.datRemote Password Disclosure Vulnerablity S.name:P-News Affected versions:1.17 and 1.16 Vendor:www.ppopn.net Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/db/user.dat As We see Admin name and...

P-News 1.16/1.17 - &#039;user.dat&#039; Remote Password Disclosure

P-News user.datRemote Password Disclosure Vulnerablity S.name:P-News Affected versions:1.17 and 1.16 Vendor:www.ppopn.net Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/db/user.dat As We see Admin name and hash !!!!!!!!!!!!!!!!!!!!!!!!!! You can crack the...

Sv&#40;ADP&#41; Forum 2.0.3 Remote Password Disclosure Vulnerablity

SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/users/admin.txt As We see Admin name and hash...

FreeBSD : opera -- URL parsing heap overflow vulnerability (4867ae85-608d-11db-8faf-000c6ec775d9)

iDefense Labs reports : Remote exploitation of a heap overflow vulnerability within version 9 of Opera Software's Opera Web browser could allow an attacker to execute arbitrary code on the affected host. A flaw exists within Opera when parsing a tag that contains a URL. A heap buffer with a...

Opera Web浏览器URI标签解析堆溢出漏洞

Opera是一款流行的WEB浏览器，支持多种平台。 Opera浏览器在解析包含有URL的标签时存在堆溢出漏洞，成功利用这个漏洞的攻击者可能以登录用户的权限执行任意代码，失败的攻击也可能导致浏览器崩溃。 在解析过程中分配了256字节的堆缓冲区，但没有经过长度检查便将标签的URL拷贝到了这个缓冲区。C/C++的漏洞代码如下： char localurl = malloc256; strcpylocalurl, tagurl; Opera Software Opera 9.01 Opera Software Opera 9.0 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Opera Web Browser fails to properly process overly long URLs

Overview The Opera Web Browser fails to properly process overly long URLs. This vulnerability may allow arbitrary code execution. Description Opera is a multi-platform web browser that is available for a range of operating systems and embedded Internet products. Opera contains a heap buffer...