|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA17963] Opera Bookmark Large Title Denial of Service Weakness
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Mon Dec 12 2005 - 12:05:10 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Opera Bookmark Large Title Denial of Service Weakness
SECUNIA ADVISORY ID:
SA17963
VERIFY ADVISORY:
http://secunia.com/advisories/17963/
CRITICAL:
Not critical
IMPACT:
DoS
WHERE:
From remote
SOFTWARE:
Opera 8.x
http://secunia.com/product/4932/
DESCRIPTION:
A weakness has been reported in Opera, which can be exploited by
malicious people to cause a DoS (Denial of Service).
The weakness is caused due to an error in the handling of large page
titles. This can be exploited by tricking a user into bookmarking a
page with an overly long title.
Successful exploitation causes the browser to crash when the affected
browser is started up again after an attack, but requires that the
Input Method Editor (IME) is installed. Users may have to remove the
"autosave.win" file in order to be able to use the affected browser.
SOLUTION:
Update to version 8.51.
http://www.opera.com/download/
PROVIDED AND/OR DISCOVERED BY:
The vendor credits Tatsuya Matsumoto and jp-CERT.
ORIGINAL ADVISORY:
Opera:
http://www.opera.com/support/search/supsearch.dml?index=821
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]