Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
BID:10081
Info
Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
| Bugtraq ID: | 10081 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 08 2004 12:00AM |
| Updated: | Apr 08 2004 12:00AM |
| Credit: | This vulnerability was discovered by "Pascal Notz" <[email protected]>. |
| Vulnerable: |
Opera Software Opera Web Browser 7.0 3win32 |
| Not Vulnerable: | |
Discussion
Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an invalid source argument.
A remote attacker may exploit this vulnerability to cause Opera to crash.
A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an invalid source argument.
A remote attacker may exploit this vulnerability to cause Opera to crash.
Exploit / POC
Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
No exploit is required to leverage this vulnerability, however the following example has been supplied:
<iframe src="?" height=0 width=0>
No exploit is required to leverage this vulnerability, however the following example has been supplied:
<iframe src="?" height=0 width=0>
Solution / Fix
Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Opera Web Browser Remote IFRAME Denial Of Service Vulnerability
References:
References:
- Opera Web Browser Home Page (Opera Software)