4487 matches found
Opera < 7.50 File Download Extension Spoofing
The version of Opera installed on the remote host contains a flaw that may allow a malicious user to trick a user into running arbitrary code. The issue is triggered when an malicious website provides a file for download, but crafts the filename in such a way that the file is executed, rather tha...
Opera < 7.50 JavaScript Engine Array Handling DoS
The version of Opera on the remote host is vulnerable to an issue when handling large JavaScript arrays. In particular, it is possible to crash the browser when performing various operations on Array objects with 99999999999999999999999 or 0x23000000 elements. The crash is due to a segmentation...
Opera < 7.20 news URL Handling DoS
The version of Opera installed on the remote host reportedly crashes when processing a 'news:' URL of excessive length, that may result in a denial of service. It has been reported that this issue will trigger a condition that will prevent Opera from functioning until the program has been...
Opera < 7.51 favicon.ico Address Bar Spoofing
The version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. It is reported that the 'favicon' feature can be used to spoof the domain of a malicious web page. An attacker can create an icon that includes the text of the desired...
Opera < 7.50 onUnload Address Bar Spoofing
The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript 'unOnload' event handler when the brows...
Opera < 7.54 Multiple Function Address Bar Spoofing
The version of Opera installed on the remote host is vulnerable to a flaw wherein a remote attacker can obscure the URI, leading the user to believe that he/she is accessing a trusted resource. To exploit this issue, an attacker would need to set up a rogue website, then entice a local user to...
CVE-2004-0537
Opera 7.50 and earlier allows remote web sites to provide a "Shortcut Icon" favicon that is wider than expected, which could allow the web sites to spoof a trusted domain and facilitate phishing attacks using a wide icon and extra spaces...
Opera: Location, Location, Location
GreyMagic Security Advisory GM008-OP ===================================== By GreyMagic Software, 05 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm008-op/. Topic: Location, Location, Location. Discovery date: 19 Jul 2004. Affected applications:...
Opera: Location, Location, Location
GreyMagic Security Advisory GM008-OP ===================================== By GreyMagic Software, 05 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm008-op/. Topic: Location, Location, Location. Discovery date: 19 Jul 2004. Affected applications:...
Opera: Multiple new vulnerabilities
Background Opera is a multi-platform web browser. Description Multiple vulnerabilities have been found in the Opera web browser. Opera fails to deny write access to the "location" browser object. An attacker can overwrite methods in this object and gain script access to any page that uses one of...
CVE-2004-0717
Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...
bitlanceOpera.txt
A vulnerability is found in the Opera browser version 7.51 , which can be exploited by spammers to spoof information displayed in the address bar.Tested on Windows OS. Demonstration HTML source code: ======== begin ======== !DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" html...
Opera Web Browser 7.53 - Location Replace URI Obfuscation
Opera Web Browser 7.53 - Location Replace URI Obfuscation source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be...
Opera Web Browser 7.53 - Location Replace URI Obfuscation
source: https://www.securityfocus.com/bid/10810/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. This issue is due to a race condition error. This issue may be leveraged by an attacker to display false information in the...
Opera < 7.53 Multiple Vulnerabilities
The version of Opera installed on the remote host is vulnerable to two security issues : - A cross domain frame loading vulnerability. - An unspecified vulnerability in the way it handles certificates. An attacker may exploit one of these flaws to impersonate a web server. C Tenable Network...
CVE-2004-0717
CVE-2004-0717 affects Opera 7.51 for Windows and 7.50 for Linux. The vulnerability arises from Opera not properly preventing a frame in one domain from injecting content into a frame in another domain, enabling frame-injection that can facilitate site spoofing and related attacks. The connected d...
CVE-2004-0717
Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...
Fedora Core 1 : kdelibs-3.1.4-5 (2004-121)
iDEFENSE identified a vulnerability in the Opera Web Browser that could allow remote attackers to create or truncate arbitrary files. The KDE team has found that a similar vulnerability exists in KDE. A flaw in the telnet URL handler can allow options to be passed to the telnet program which can ...
Opera Web Browser 7.5 - Resource Detection
Opera Web Browser 7.5 - Resource Detection source: https://www.securityfocus.com/bid/10961/info Opera Web Browser is prone to a security weakness that may permit an attacker to determine the existence of resources on a vulnerable computer. An attacker can use an IFRAME that is accessible within t...
Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation
Opera Web Browser 7.5x - IFrame OnLoad Address Bar URL Obfuscation source: https://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the...