Microsoft Internet Explorer 5.0.1 Opera 7.51 - URI Obfuscation

Microsoft Internet Explorer 5.0.1 Opera 7.51 - URI Obfuscation source: https://www.securityfocus.com/bid/10517/info A weakness is reported in Microsoft Internet Explorer and Opera allowing an attacker to obfuscate the URI of a link. This could facilitate the impersonation of legitimate web sites ...

Microsoft Internet Explorer 5.0.1 / Opera 7.51 - URI Obfuscation

source: https://www.securityfocus.com/bid/10517/info A weakness is reported in Microsoft Internet Explorer and Opera allowing an attacker to obfuscate the URI of a link. This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users...

CVE-2004-0537

Opera 7.50 and earlier is vulnerable to address bar spoofing via the favicon feature. The weakness allows remote web pages to provide a favicon that is wider than expected, enabling spoofing of the apparent domain and facilitating phishing using a wide icon and added spaces. Concrete details acro...

CVE-2004-0537

Opera 7.50 and earlier allows remote web sites to provide a "Shortcut Icon" favicon that is wider than expected, which could allow the web sites to spoof a trusted domain and facilitate phishing attacks using a wide icon and extra spaces...

Opera telnet URI handler file creation/truncation vulnerability

Background Opera is a multi-platform web browser. Description The telnet URI handler in Opera does not check for leading '-' characters in the host name. Consequently, a maliciously-crafted telnet:// link may be able to pass options to the telnet program itself. One example would be the following...

CVE-2004-0473

Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via 1 the "-f" option on Windows XP or 2 the "-n" option...

CVE-2004-0473

Opera before 7.50 has an argument injection in its telnet URI handler: leading '-' in the telnet host name is not filtered, allowing remote attackers to pass options to the telnet program and overwrite files. The Gentoo GLSA and related advisories describe two concrete outcomes: creation or trunc...

Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

Am 13.05.2004 um 17:16 schrieb Richard Johnson: Opera Telnet URI Handler File Creation/Truncation Vulnerability iDEFENSE Security Advisory 05.12.04 www.idefense.com/application/poi/display?id=104&type=vulnerabilities May 12, 2004 This vulnerability exists under OSX with Safari, Firefox, OmniWeb,...

[Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

Opera Telnet URI Handler File Creation/Truncation Vulnerability iDEFENSE Security Advisory 05.12.04 www.idefense.com/application/poi/display?id=104&type=vulnerabilities May 12, 2004 I. BACKGROUND Opera is a cross-platform web browser. More information is available from http://www.opera.com/ II...

Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

Another minor issue has also been corrected in Opera Browser version 7.50, allowing malicious websites to spoof the address bar. The solutions remains the same, therefore no need to paste our full advisory here. However, if you wish further details, they can be found at:...

URI handler vulnerabilities in several browsers

Karol Wiesek and Greg MacManus reported via iDEFENSE that the Opera web browser contains a flaw in the handling of certain URIs. When presented with these URIs, Opera would invoke external commands to process them after some validation. However, if the hostname component of a URI begins with a -'...

CVE-2003-0593

Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" encoded dot dot directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same...

Opera Web Browser 7.0 - Remote IFRAME Denial of Service

source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an invalid source argument. A remote attacker may exploit this...

Opera Web Browser 7.0 - Remote IFRAME Denial of Service

Opera Web Browser 7.0 - Remote IFRAME Denial of Service source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an...

CVE-2003-0593

CVE-2003-0593 describes a vulnerability in Opera where remote attackers can bypass cookie access restrictions by using encoded directory traversal sequences (%2e%2e) in a URL. This leads Opera to send cookies outside the intended URL subset to a potentially co-located application on the same serv...

CVE-2003-0593

Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" encoded dot dot directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same...

opera723.txt

Opera Array Allocation Managment Exploit ===================================== Dicovered by- d3thStaR !AM Greets: !AM Crew, Atomix, d3thstar, mgrd, 0x29A Crew, rootthief.com. Sources: Safari Overflow Exploit- kang Confirmed products effected- Opera 7.23 Linux, Opera 7.23 Windows =======Descriptio...

CVE-2004-2083

Opera Web Browser 7.0 through 7.23 allows remote attackers to trick users into executing a malicious file by embedding a CLSID in the file name, which causes the malicious file to appear as a trusted file type, aka "File Download Extension Spoofing."...

CVE-2003-1396

Heap-based buffer overflow in Opera 6.05 through 7.10 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a filename with a long extension...

CVE-2003-1387

Buffer overflow in Opera 6.05 and 6.06, and possibly other versions, allows remote attackers to execute arbitrary code via a URL with a long username...