Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
BID:24080
Info
Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
| Bugtraq ID: | 24080 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-2809 |
| Remote: | Yes |
| Local: | No |
| Published: | May 21 2007 12:00AM |
| Updated: | Nov 04 2008 02:55AM |
| Credit: | iDefense Labs is credited with the discovery of this vulnerability. |
| Vulnerable: |
Opera Software Opera Web Browser 8.51 Opera Software Opera Web Browser 8.50 Opera Software Opera Web Browser 8.0.2 Opera Software Opera Web Browser 8.0 2 Opera Software Opera Web Browser 8.0 1 Opera Software Opera Web Browser 8.0 Opera Software Opera Web Browser 7.54 Opera Software Opera Web Browser 7.53 Opera Software Opera Web Browser 7.52 Opera Software Opera Web Browser 7.51 Opera Software Opera Web Browser 7.50 Opera Software Opera Web Browser 7.23 Opera Software Opera Web Browser 7.22 Opera Software Opera Web Browser 7.21 Opera Software Opera Web Browser 7.20 Beta 1 build 2981 Opera Software Opera Web Browser 7.20 Opera Software Opera Web Browser 7.11 j Opera Software Opera Web Browser 7.11 b Opera Software Opera Web Browser 7.11 Opera Software Opera Web Browser 7.10 Opera Software Opera Web Browser 7.0 win32 Beta 2 Opera Software Opera Web Browser 7.0 win32 Beta 1 Opera Software Opera Web Browser 7.0 win32 Opera Software Opera Web Browser 7.0 3win32 Opera Software Opera Web Browser 7.0 2win32 Opera Software Opera Web Browser 7.0 1win32 Opera Software Opera Web Browser 9.20 beta 1 Opera Software Opera Web Browser 9.20 Opera Software Opera Web Browser 9.10 Opera Software Opera Web Browser 9.02 Opera Software Opera Web Browser 9.01 Opera Software Opera Web Browser 9 Opera Software Opera Web Browser 8.54 Opera Software Opera Web Browser 8.53 Opera Software Opera Web Browser 8.52 Opera Software Opera Web Browser 8 Beta 3 |
| Not Vulnerable: |
Opera Software Opera Web Browser 9.21 |
Discussion
Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
The Opera Web Browser is prone to a buffer-overflow vulnerability because it fails to sufficiently bounds-check user-supplied input.
Exploiting this issue may allow an attacker to execute arbitrary code with the privileges of the user running the affected application.
Versions prior to Opera 9.21 are vulnerable.
NOTE: This issue is reported to affect only Opera running on Microsoft Windows.
The Opera Web Browser is prone to a buffer-overflow vulnerability because it fails to sufficiently bounds-check user-supplied input.
Exploiting this issue may allow an attacker to execute arbitrary code with the privileges of the user running the affected application.
Versions prior to Opera 9.21 are vulnerable.
NOTE: This issue is reported to affect only Opera running on Microsoft Windows.
Exploit / POC
Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
Solution:
Opera Software has released version 9.21 to address this issue. Please see the references for more information.
Solution:
Opera Software has released version 9.21 to address this issue. Please see the references for more information.
References
Opera Web Browser Torrent File Handling Buffer Overflow Vulnerability
References:
References:
- Opera Download Page (Opera)
- Opera Homepage (Opera Software)
- iDefense Security Advisory 05.23.07: Opera Software Opera Web Browser Transfer ([email protected])
- Advisory: Malicious torrent files can execute arbitrary code in Opera (Opera)
- Opera Software Opera Web Browser Transfer Item Pop-up Menu Stack Overflow Vulner (IDefense Labs)