| VID |
28637 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Opera Web browser, according to its version number, has a large JavaScript array handling vulnerability. Opera is a Web browser, developed by Opera Software, for multiple operating systems. Opera versions prior to 7.50 are vulnerable to a denial of service attack, caused by improper handling large JavaScript arrays. In particular, it is possible to crash the browser when performing various operations on Array objects with 99999999999999999999999 or 0x23000000 elements.
A remote attacker could construct a hostile Web site that contains a malicious script exploiting this vulnerability, which would be executed in the victim's Web browser within the security context of the hosting site, once the malicious link is clicked.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.securityfocus.com/archive/1/357444
* Platforms Affected:
Opera versions prior to 7.50
Linux Any version
Windows Any version |
| Recommendation |
Upgrade to the latest version of Opera (7.50 or later), available from the Opera Web site at http://www.opera.com/download/ |
| Related URL |
CVE-2004-0361 (CVE) |
| Related URL |
9815,9869 (SecurityFocus) |
| Related URL |
15413 (ISS) |
|
