Jump to content
Hannibal

Opera 9 (long href) Remote Denial of Service Exploit

Recommended Posts

Posted

<!--

Opera 9 DoS by Critical Security, Advisory #009

Advisory can be reached: http://www.critical.lt/?vuln/349

We are: N9, bigb0u, cybergoth, iglOo, mircia, Povilas

Shouts to Lithuanian girlz! and our friends ;]

Product: Opera 9 (8.x is immune to this)

Vulnerability type: Out-of-bounds memory access via specially crafted HTML file

Risk: moderated

Attack type: Remote

Details:

Vulnerability can be exploited by using a large value in a href tag to create an out-of-bounds memory access.

Solution:

Currently none.

Proof Of Concept DoS exploit:

-->

<html>

<body>

boom

</body>

</html>

Posted

<div class='quotetop'>QUOTE("Shocker")</div>

<div class='quotetop'>QUOTE("eddie47")
:o :o :o :o

Nu inteleg care e rostul acestui post... dar trecem cu vederea.

Dap... am instalat Opera 9, am testat `vulnerabilitatea` respectiva si iata ce a iesit:

aaaaaaaaaa.jpg[/quote:879b24c575]

nici eu nu inteleg rostul postului tau. atata timp cat nu se vede nici o imagine ;)

17eu3.jpg

Guest
This topic is now closed to further replies.


×
×
  • Create New...