Opera 'getComputedStyle()' Information Disclosure Vulnerability
BID:51052
Info
Opera 'getComputedStyle()' Information Disclosure Vulnerability
| Bugtraq ID: | 51052 |
| Class: | Design Error |
| CVE: |
CVE-2010-5072 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 13 2011 12:00AM |
| Updated: | Dec 13 2011 12:00AM |
| Credit: | Artur Janc and Lukasz Olejnik |
| Vulnerable: |
Opera Software Opera Web Browser 10.50 |
| Not Vulnerable: | |
Discussion
Opera 'getComputedStyle()' Information Disclosure Vulnerability
Opera is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information. Information obtained may aid in further attacks.
Opera is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information. Information obtained may aid in further attacks.
Exploit / POC
Opera 'getComputedStyle()' Information Disclosure Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to view a malicious webpage.
An attacker can exploit this issue by enticing an unsuspecting victim to view a malicious webpage.
Solution / Fix
Opera 'getComputedStyle()' Information Disclosure Vulnerability
Solution:
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Opera 'getComputedStyle()' Information Disclosure Vulnerability
References:
References:
- Feasibility and Real-World Implications of Web Browser History Detection (Artur Janc and Lukasz Olejnik)
- Opera Homepage (Opera Software)