Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
BID:24352
Info
Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
| Bugtraq ID: | 24352 |
| Class: | Design Error |
| CVE: |
CVE-2007-3142 CVE-2007-3143 CVE-2007-3144 CVE-2007-3145 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 04 2007 12:00AM |
| Updated: | Jul 06 2016 02:39PM |
| Credit: | Alex and Ronald of The Hacker Webzine discovered this issue. |
| Vulnerable: |
SuSE SUSE Linux Enterprise Server 9 SP3 SuSE SUSE Linux Enterprise Server 8 SuSE SUSE Linux Enterprise Server 10 SP1 SuSE SUSE Linux Enterprise Server 10 SuSE SUSE Linux Enterprise SDK 9 SuSE SUSE Linux Enterprise SDK 10.SP1 SuSE SUSE Linux Enterprise SDK 10 SuSE SUSE Linux Enterprise Desktop 10 SuSE Linux Professional 10.2 x86_64 SuSE Linux Personal 10.2 x86_64 S.u.S.E. UnitedLinux 1.0 S.u.S.E. SuSE Linux Standard Server 8.0 S.u.S.E. SuSE Linux School Server for i386 S.u.S.E. SUSE LINUX Retail Solution 8.0 S.u.S.E. SuSE Linux Openexchange Server 4.0 S.u.S.E. openSUSE 10.2 S.u.S.E. Open-Enterprise-Server 0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.0 S.u.S.E. Linux Professional 10.2 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 10.2 S.u.S.E. Linux Personal 10.1 S.u.S.E. Linux Desktop 10 S.u.S.E. Linux 10.1 x86-64 S.u.S.E. Linux 10.1 x86 S.u.S.E. Linux 10.1 ppc S.u.S.E. Linux 10.0 x86-64 S.u.S.E. Linux 10.0 x86 S.u.S.E. Linux 10.0 ppc Opera Software Opera Web Browser 9.21 Gentoo Linux |
| Not Vulnerable: |
Opera Software Opera Web Browser 9.22 |
Discussion
Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
Opera Web Browser is prone to an HTTP basic authentication domain-spoofing vulnerability.
Attackers may exploit this vulnerability via a malicious webpage to spoof the origin of an HTTP basic authentication dialog that the victim may trust. Attackers may find this issue useful in phishing or other attacks that rely on content spoofing.
Opera 9.21 is vulnerable; other versions may also be affected.
Reports indicate that other browsers are also vulnerable, but this has not been confirmed.
Opera Web Browser is prone to an HTTP basic authentication domain-spoofing vulnerability.
Attackers may exploit this vulnerability via a malicious webpage to spoof the origin of an HTTP basic authentication dialog that the victim may trust. Attackers may find this issue useful in phishing or other attacks that rely on content spoofing.
Opera 9.21 is vulnerable; other versions may also be affected.
Reports indicate that other browsers are also vulnerable, but this has not been confirmed.
Exploit / POC
Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to visit a maliciously crafted webpage.
The following proof-of-concept webpage has been created to demonstrate this issue:
http://testing.bitsploit.de/test.html
To exploit this issue, an attacker must entice an unsuspecting user to visit a maliciously crafted webpage.
The following proof-of-concept webpage has been created to demonstrate this issue:
http://testing.bitsploit.de/test.html
Solution / Fix
Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
Solution:
The vendor has addressed this issue in Opera 9.22.
Please see the referenced advisories for further information.
Solution:
The vendor has addressed this issue in Opera 9.22.
Please see the referenced advisories for further information.
References
Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
References:
References:
- Opera Homepage (Opera Software)
- Opera HTTP Auth Phishing (The Hacker Webzine)