Opera Web Browser XML Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

The host is installed with Opera Web Browser and is prone to XML Denial of Service vulnerability.

Impact

Successful exploitation will let the attacker craft a malicious XML page and cause denial of service by persuading the user to open the malicious arbitrary page. Impact Level: Application

Solution

Upgrade to Opera version 10.00 or later. For updates refer to http://www.opera.com/download

Insight

This flaw is due to improper boundary check while parsing XML documents containing an overly large number of nested elements.

Affected

Opera version 9.64 and prior on Linux.

References

http://xforce.iss.net/xforce/xfdb/49522

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-1234
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

AyeView GIF Image Handling Denial of Service Vulnerability
Apache Subversion 'mod_dav_svn' Module Multiple DoS Vulnerabilities
ddrLPD Remote Denial of Service Vulnerability
Apple Safari 'WebKit.dll' Stack Consumption Vulnerability
ejabberd 'client2server' Message Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities