Published: 12/04/2010 Updated: 17/08/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Integer overflow in Opera 10.10 up to and including 10.50 allows remote malicious users to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.

Vulnerable Product	Search on Vulmon	Subscribe to Product
opera opera_browser 10.10
opera opera_browser 10.50

<?php /* *@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ *------------------------------------------------------------------------------- * Opera 1010 - 1050 * Title: Integer overflow leading * to * out of bounds array access R/W * 0day poc * Autor: Marcin Ressel aka ~ ...

CWE-189 http://www.securityfocus.com/bid/38519 http://www.exploit-db.com/exploits/11622 http://secunia.com/advisories/38820 http://osvdb.org/62714 http://my.opera.com/securitygroup/blog/2010/03/09/the-malformed-content-length-header-security-issue http://www.securitytracker.com/id?1023690 http://www.vupen.com/english/advisories/2010/0529 http://www.opera.com/support/kb/view/948/https://exchange.xforce.ibmcloud.com/vulnerabilities/56673 https://nvd.nist.gov https://www.exploit-db.com/exploits/11622/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-1349

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect