Opera < 7.51 favicon.ico Address Bar Spoofing

Medium Nessus Plugin ID 14245


The remote host contains a web browser that is vulnerable to address bar spoofing attacks.


The version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. It is reported that the 'favicon' feature can be used to spoof the domain of a malicious web page. An attacker can create an icon that includes the text of the desired site and is similar to the way Opera displays information in the address bar. The attacker can then obfuscate the real address with spaces.

This issue can be used to spoof information in the address bar, page bar and page/window cycler.


Install to Opera 7.51 or newer.

See Also



Plugin Details

Severity: Medium

ID: 14245

File Name: opera_favicon_address_bar_spoofing.nasl

Version: $Revision: 1.17 $

Type: local

Agent: windows

Family: Windows

Published: 2004/08/10

Modified: 2011/11/28

Dependencies: 21746

Risk Information

Risk Factor: Medium


Base Score: 4.3

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:opera:opera_browser

Required KB Items: SMB/Opera/Version

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2004/06/03

Reference Information

CVE: CVE-2004-0537

BID: 10452

OSVDB: 6590