Opera < 7.51 favicon.ico Address Bar Spoofing

The version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. It is reported that the 'favicon' feature can be used to spoof the domain of a malicious web page. An attacker can create an icon that includes the text of the desired...

Opera < 7.50 onUnload Address Bar Spoofing

The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript 'unOnload' event handler when the brows...

Opera < 7.23 Zip File Processing Crafted File Handling Overflow

The version of Opera on the remote host is vulnerable to a security weakness. A problem has been identified in the handling of zipped skin files by Opera. Because of this, it may be possible for an attacker to gain unauthorized access to a system using the vulnerable browser. C Tenable Network...

Opera < 7.54 Multiple Function Address Bar Spoofing

The version of Opera installed on the remote host is vulnerable to a flaw wherein a remote attacker can obscure the URI, leading the user to believe that he/she is accessing a trusted resource. To exploit this issue, an attacker would need to set up a rogue website, then entice a local user to...

CVE-2004-0537

Opera 7.50 and earlier allows remote web sites to provide a "Shortcut Icon" favicon that is wider than expected, which could allow the web sites to spoof a trusted domain and facilitate phishing attacks using a wide icon and extra spaces...

Opera: Location, Location, Location

GreyMagic Security Advisory GM008-OP ===================================== By GreyMagic Software, 05 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm008-op/. Topic: Location, Location, Location. Discovery date: 19 Jul 2004. Affected applications:...

Opera: Location, Location, Location

GreyMagic Security Advisory GM008-OP ===================================== By GreyMagic Software, 05 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm008-op/. Topic: Location, Location, Location. Discovery date: 19 Jul 2004. Affected applications:...

Opera: Multiple new vulnerabilities

Background Opera is a multi-platform web browser. Description Multiple vulnerabilities have been found in the Opera web browser. Opera fails to deny write access to the "location" browser object. An attacker can overwrite methods in this object and gain script access to any page that uses one of...

CVE-2004-0717

Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...

Opera Web Browser 7.53 - Location Replace URI Obfuscation

Opera Web Browser 7.53 - Location Replace URI Obfuscation source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be...

bitlanceOpera.txt

A vulnerability is found in the Opera browser version 7.51 , which can be exploited by spammers to spoof information displayed in the address bar.Tested on Windows OS. Demonstration HTML source code: ======== begin ======== !DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" html...

Opera Web Browser 7.53 - Location Replace URI Obfuscation

source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be leveraged by an attacker to display false information in the...

Opera < 7.53 Multiple Vulnerabilities

The version of Opera installed on the remote host is vulnerable to two security issues : - A cross domain frame loading vulnerability. - An unspecified vulnerability in the way it handles certificates. An attacker may exploit one of these flaws to impersonate a web server. C Tenable Network...

CVE-2004-0717

Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...

CVE-2004-0717

CVE-2004-0717 affects Opera 7.51 for Windows and 7.50 for Linux. The vulnerability arises from Opera not properly preventing a frame in one domain from injecting content into a frame in another domain, enabling frame-injection that can facilitate site spoofing and related attacks. The connected d...

Fedora Core 1 : kdelibs-3.1.4-5 (2004-121)

iDEFENSE identified a vulnerability in the Opera Web Browser that could allow remote attackers to create or truncate arbitrary files. The KDE team has found that a similar vulnerability exists in KDE. A flaw in the telnet URL handler can allow options to be passed to the telnet program which can ...

Opera Web Browser 7.5 - Resource Detection

Opera Web Browser 7.5 - Resource Detection source: https://www.securityfocus.com/bid/10961/info Opera Web Browser is prone to a security weakness that may permit an attacker to determine the existence of resources on a vulnerable computer. An attacker can use an IFRAME that is accessible within t...

Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation

Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation source: https://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the...

Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation

source: https://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the Opera Web Browser Address Bar Spoofing Weakness reported in BID...

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...