Skip to main content

Opera Truncated Dialog Box Vulnerability

Last Update Date: 31 Aug 2012 10:43 Release Date: 31 Aug 2012 5295 Views

RISK: Medium Risk

TYPE: Clients - Browsers

TYPE: Browsers

A vulnerability has been identified in Opera, which can be exploited by malicious people to compromise a user's system.

 

The vulnerability is caused due to an error when displaying a dialog box's buttons within a small window. This can be exploited to download and execute a file by tricking a user into clicking on a misleading button within an underlying page.

 

Successful exploitation may allow execution of arbitrary code, but may require a certain amount of social engineering.


Impact

  • Remote Code Execution

System / Technologies affected

  • Opera 11.x
  • Opera 12.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 12.02 or 11.67 (Mac OS X only).

Vulnerability Identifier

  • No CVE information is available

Source


Related Link