Opera Web Browser 'Content-Length' Header Integer Overflow Vulnerability

Opera Web Browser is prone to a remote integer-overflow vulnerability.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed attacks will likely cause denial-of-service conditions.

Update (March 5, 2010): This issue was originally documented as a buffer-overflow vulnerability; however, Opera reports that this issue cannot be exploited to execute arbitrary code.

Update (March 9, 2010): Opera reports that arbitrary code execution may be possible.

Opera Web Browser for Windows versions 10.10 and 10.50 are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus