Opera < 7.50 JavaScript Engine Array Handling DoS

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.


Synopsis :

An installed browser is vulnerable to a denial of service attack.

Description :

The version of Opera on the remote host is vulnerable to an issue when
handling large JavaScript arrays.

In particular, it is possible to crash the browser when performing
various operations on Array objects with 99999999999999999999999 or
0x23000000 elements.

The crash is due to a segmentation fault and may be indicative of an
exploitable memory corruption vulnerability, possibly resulting in
arbitrary code execution.

Solution :

Install Opera 7.50 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 5.0
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 14248 ()

Bugtraq ID: 9869

CVE ID: CVE-2004-1810

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now