| VID |
28708 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Opera web browser which is older than version 9.22 has been installed on the host. Opera is a Web browser, developed by Opera Software, for multiple operating systems. Opera versions prior to 9.22 are vulnerable to a remote code-execution vulnerability that occurs when parsing a specially crafted BitTorrent header. By persuading a victim to visit a specially-crafted Web site and click on a malicious link to a BitTorrent file, a remote attacker could exploit this vulnerability to execute arbitrary code with the privileges of the user running the affected application. In addition, the vulnerable application could allow a remote attacker to conduct spoofing attacks, caused due to an error in the handling of the "data:" URI scheme.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.opera.com/docs/changelogs/windows/922/
http://www.opera.com/support/search/view/862/
http://www.opera.com/support/search/view/863/
http://www.opera.com/support/search/view/864/
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=564
http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0406.html
http://www.securityfocus.com/archive/1/473703/30/0/threaded
http://www.frsirt.com/english/advisories/2007/2537
http://securitytracker.com/alerts/2007/Jul/1018397.html
http://secunia.com/advisories/26074
* Platforms Affected:
Opera Software, Opera versions prior to 9.22
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Opera (9.22 or later), available from the Opera Web site at http://www.opera.com/download/ |
| Related URL |
CVE-2007-3142,CVE-2007-3819 (CVE) |
| Related URL |
24352,24917,24970 (SecurityFocus) |
| Related URL |
34983,35430 (ISS) |
|
