Opara 6.06 Released, Security-Hole Left
From: nesumin (nesumin@softhome.net)
Date: 03/20/03
- Previous message: OpenPKG: "[OpenPKG-SA-2003.026] OpenPKG Security Advisory (openssl)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 21 Mar 2003 07:55:24 +0900 From: nesumin <nesumin@softhome.net> To: bugtraq@securityfocus.com
Opera Software released Opera 6.06.
However, the security hole that we had released on Feb 9th, 2003
("Opera Username Buffer Overflow Vulnerability"
[http://www.securityfocus.com/archive/1/311194])
has not been fixed yet. Opera 6.06 still has this security hole,
to which we should pay heed.
Here attached an HTML file that you can easily check this vulnerability.
This would run the code that launches the Internet Explorer.
Change file extension to HTML.
--------------------------------------------------
nesumin <nesumin@softhome.net>
- application/octet-stream attachment: unbof_demo.txt
- Previous message: OpenPKG: "[OpenPKG-SA-2003.026] OpenPKG Security Advisory (openssl)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
