Opera < 7.20 news URL Handling DoS

Medium Nessus Plugin ID 14249


A browser installed on the remote host is vulnerable to a denial of service attack.


The version of Opera installed on the remote host reportedly crashes when processing a 'news:' URL of excessive length, that may result in a denial of service. It has been reported that this issue will trigger a condition that will prevent Opera from functioning until the program has been reinstalled.


Install Opera 7.20 or newer.

Plugin Details

Severity: Medium

ID: 14249

File Name: opera_news_url_dos.nasl

Version: $Revision: 1.15 $

Type: local

Agent: windows

Family: Windows

Published: 2004/08/10

Modified: 2012/06/19

Dependencies: 21746

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

Vulnerability Information

CPE: cpe:/a:opera:opera_browser

Required KB Items: SMB/Opera/Version

Exploit Available: true

Exploit Ease: No exploit is required

Reference Information

BID: 7430

OSVDB: 60491