[ECHO_ADV_35$2006] OPERA Web Browser 9 Denial OF Service
------------------------------------------------------------------------------------
Author : Ahmad Muammar W.K (a.k.a) y3dips
Date Found : July, 1st 2006
Location : Indonesia, Jakarta
web : http://echo.or.id/adv/adv35-y3dips-2006.txt
Critical Lvl : Moderated
Impact : Browser will automatically shutdown
Where : From Remote
------------------------------------------------------------------------------------
Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Opera Web Browser
Application : Opera Web Browser
version : Opera/9.00 (X11; Linux i686; U; en)
Opera/9.00 (Windows NT 5:1;U;en)
Some Other version are not vulnerable and others are not tested,
URL : http://opera.com
Description :
Vulnerability can be exploited by using iframe combining with javascript
(documents stylesheet) to create an out-of-bounds memory access.
------------------------------------------------------------------------------------
Exploit Code:
live exploit :
http://y3dips.echo.or.id/opera9-dos/
*access this site with your opera 9
------------------------------------------------------------------------------------
Solution:
~~~~~~~~
Disable Java Scipt execution from Opera Web browser
for more details please cek the real advisories at http://echo.or.id/adv/adv35-y3dips-2006.txt
No comments:
Post a Comment