Opera Web Browser Large JavaScript Array Handling Vulnerability Network Vulnerability

Summary

The remote host is using Opera - an alternative web browser. This version is vulnerable to an issue when handling large JavaScript arrays. In particular, it is possible to crash the browser when performing various operations on Array objects with 99999999999999999999999 or 0x23000000 elements. The crash is due to a segmentation fault and may be indicative of an exploitable memory corruption vulnerability, possibly resulting in arbitrary code execution.

Solution

Install Opera 7.50 or newer.

Severity

Classification

CVE CVE-2004-1810
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

MS Windows taskmgr.exe Information Disclosure Vulnerability
Mozilla/Firefox security manager certificate handling DoS
Microsoft Windows Minimum Certificate Key Length Spoofing Vulnerability (2661254)
Microsoft ASP.NET Cross-Site Scripting vulnerability
MS Windows Fraudulent Digital Certificates Spoofing Vulnerability (2641690)

Opera web browser large javaScript array handling vulnerability

Take action and discover your vulnerabilities