Skip to main content

Opera Browser "Content-Length" Header Buffer Overflow Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 5 Mar 2010 5501 Views

RISK: Medium Risk

A vulnerability has been identified in Opera, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by a buffer overflow error when processing malformed HTTP "Content-Length:" headers, which could be exploited by remote attackers to crash an affected browser or execute arbitrary code by tricking a user into visiting a web page hosted on a malicious web server.


Impact

  • Remote Code Execution

System / Technologies affected

  • Opera version 10.50 and prior

Solutions

  • It is not aware of any vendor-supplied patch.
  • Workaround
    - Do not browse untrusted websites or follow untrusted links.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link