Opera 7.0 History Object Information Disclosure Weakness

2014-07-01T00:00:00
ID SSV:76028
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/6757/info

An information disclosure weakness has been reported for Opera 7 browsers on the Microsoft Windows platform.

The weakness is due to the way the history object exposes some properties. Specifically, the properties history.next and history.previous are exposed. Any site can make use of these properties to track a user's web surfing habits.

alert("Last URL: "+history.previous+".\nNext URL: "+history.next+".");