Opera Browser "select" Element Children Integer Truncation Vulnerability

Last Update Date: 1 Feb 2011 Release Date: 24 Jan 2011 6446 Views

RISK: High Risk

High Risk

TYPE: Clients - Browsers

TYPE: Browsers

A vulnerability has been identified in Opera, which could be exploited by remote attackers to take complete control of a vulnerable system. This issue is caused by an integer truncation error within the Opera Internet Browser module "opera.dll" when handling a HTML "select" element containing an overly large number of children, which could allow remote attackers to execute arbitrary code by convincing a user to visit a specially crafted web page.

Impact

  • Remote Code Execution

System / Technologies affected

  • Opera version 11.00 and prior
  • Opera version 10.63 and prior

Solutions

  • It is not aware of any vendor-supplied patch.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Opera Multiple Vulnerabilities

28 Jan 2011 5635 Views

Next

Linksys WRT54GC Web Management Interface Buffer Overflow Vulnerability

24 Jan 2011 6568 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY