Opera Unicode String Denial Of Service Vulnerability (Win) Network Vulnerability

Summary

This host is installed with Opera and is prone to Denial of Service vulnerability.

Impact

Successful exploitation lets the attacker cause memory or CPU consumption, resulting in Denial of Service condition. Impact Level: Application

Solution

Upgarde to Opera Version 10 or later, For updates refer to http://www.opera.com/download/

Insight

- Error caused by calling the 'window.print' function in a loop aka a 'printing DoS attack'. - CPU consumption issue exists when a series of automatic submissions of a form containing a KEYGEN element. - Error exists when application fails to handle user supplied input into the 'write' method via a long Unicode string argument.

Affected

Opera version 9.52 and prior on Windows.

References

http://websecurity.com.ua/2456/
http://websecurity.com.ua/3194/
http://websecurity.com.ua/3338/
http://www.securityfocus.com/archive/1/archive/1/506328/100/100/threaded

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-7245, CVE-2009-2577, CVE-2009-3269
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

freeFTPD PORT Command Denial of Service Vulnerability
ClamAV Recursion Level Handling Denial of Service Vulnerability (Windows)
Apache Traffic Server HTTP Host Header Denial of Service Vulnerability
Denial Of Service Vulnerability in PHP April-09
Connect back to SOCKS5 server

Take action and discover your vulnerabilities