Opera Browser up to 7.51 Favicon Address Bar Handler Designfehler

VulDB: Opera Browser up to 7.51 Favicon Address Bar Handler Designfehler

General

Opera

scipID: 688
Affected: Opera Browser up to 7.51
Published: 06/03/2004 (GreyMagic)
Risk: problematic
Entry: 94.5% complete
Created: 06/07/2004
Updated: 09/03/2012

Summary

A vulnerability has been found in Opera Browser up to 7.51 and classified as problematic. This vulnerability affects an unknown function of the component Favicon Address Bar Handler. The manipulation with an unknown input leads to a designfehler vulnerability. The impact remains unknown.

The weakness was presented 06/03/2004 by GreyMagic. The advisory is shared for download at securityfocus.com. This vulnerability was named CVE-2004-0537 since 06/04/2004. The attack can be initiated remotely. Technical details are unknown but an exploit is available.

The exploit is shared for download at securityfocus.com. The vulnerability scanner Nessus provides a plugin with the ID 14245 (Opera < 7.51 favicon.ico Address Bar Spoofing), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Windows and running in the context local.

Applying a patch is able to eliminate this problem. The bugfix is ready for download at opera.com. The vulnerability is also documented in the databases at OSVDB (6590), Secunia (SA11762), SecurityFocus (BID 10452) and X-Force (16307). Additional details are provided at opera.com.