|
-
September 8th, 2004, 09:02 AM
#1
Registered User
 Opera Users - Update to 7.54
http://www.greymagic.com/security/advisories/gm008-op/
Introduction:
On 04-Feb-2003 GreyMagic released an advisory concerning Opera's security model in v7.0. The advisory depicted several flaws in Opera's model, one of them allowed for an attacker to overwrite native and custom functions in a victim window. When the victim web-page executed such function, the attacker's code executed with the victim's privileges.
Opera tried to prevent such scenarios in Opera 7.01, by blocking write-access to objects on the victim window.
Discussion:
Unfortunately, Opera failed to block write-access to the often-used "location" object.
By overwriting methods in this object, an attacker can gain immediate script access to any web-page that uses one of these methods. This includes both web-pages in foreign domains and the victim's local file system.
The impacts of this vulnerability include:
- Read-access to files on the victim's file system
- Read-access to lists of files and folders on the victim's file system
- Read-access to emails written or received by M2, Opera's mail program
- Cookie theft
- URL spoofing (phishing)
- Track user browsing history
- Much more...
Similar Threads
-
By TechZ in forum BIOS/Motherboard Drivers
Replies: 0
Last Post: September 3rd, 2004, 05:41 AM
-
By TechZ in forum Other Software Applications
Replies: 1
Last Post: August 4th, 2004, 10:06 PM
-
By Platypus in forum Spyware & Antivirus - Security
Replies: 4
Last Post: February 14th, 2003, 03:40 PM
-
By ilovetheusers in forum Tech Lounge & Tales
Replies: 6
Last Post: July 23rd, 2002, 03:04 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
Bookmarks