Secunia

Customer Area icon help

Need help?

Try CSI

Download PSI icon Scan now

Scan Now

Community

Advisories

Database Search Advisories by Product Advisories by Vendor Terminology Report vulnerability

Research Forum My Profile Our Commitment

Community Login

Register now
Forgot password?

Secunia Advisory SA8272

Opera execution of arbitrary code

Secunia Advisory

SA8272

DOWNLOAD CSI

DOWNLOAD PSI

Release Date

2003-03-12

Last Update

2003-03-13

Popularity

15,563 views

Comments

0 comments

Criticality level

Extremely critical

Impact

System access

Where

From remote

Authentication level

Available in Customer Area

Report reliability

Available in Customer Area

Solution Status

Vendor Patch

Systems affected

Available in Customer Area

Approve distribution

Available in Customer Area

Remediation status

Secunia CSI, Secunia PSI

Automated scanning

Secunia CSI, Secunia PSI

Software:

Opera 6.x

Opera 7.x

Secunia CVSS Score

Available in Customer Area

CVE Reference(s)

No CVE references.

Description
Opera has been found vulnerable to a buffer overflow in the handling of filenames when showing the "Download Dialog" box.

The problem is that very long filenames are handled incorrectly. This allows a malicious website to create a filename that causes a buffer overflow which can be exploited to execute arbitrary code.

Exploits are in the wild for Windows.

Exploitation does not require user interaction as websites can spawn the "Download Dialog" automatically.

Solution
Upgrade to version 7.0.3.

Provided and/or discovered by
nesumin

Changelog
Further details available in Customer Area

Deep Links
Links available in Customer Area

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: Opera execution of arbitrary code

No posts yet

You must be logged in to post a comment.

Reverse Engineer

Latest advisories

New advisories: 3
New vulnerabilities: 20
Updated advisories: 3

53 views
Red Hat update for java-1.4.2-ibm

51 views
OpenConnect SSL Hostname Verification Security Bypass

67 views
Debian update for openldap

177 views
Joomla PBBooking Component Multiple SQL Injection Vulnerabilities

171 views
TYPO3 phpMyAdmin Extension Security Bypass

166 views
Drupal Kaltura Module Information Disclosure Weakness

164 views
Joomla PhotoMap Gallery Component Two SQL Injection Vulnerabilities

173 views
Drupal Sage Pay Direct Payment Gateway for Ubercart Module Information Disclosure

163 views
Zemana AntiLogger IOCTL Handling Privilege Escalation Vulnerability

See all