FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

opera -- redirection cross-site scripting vulnerability

Affected packages
8.* < linux-opera < 8.01
8.* < opera < 8.01
8.* < opera-devel < 8.01

Details

VuXML ID 985bfcf0-e1d7-11d9-b875-0001020eed82
Discovery 2005-06-16
Entry 2005-06-20

A Secunia Advisory reports:

Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to conduct cross-site scripting attacks against users.

The vulnerability is caused due to input not being sanitised, when Opera generates a temporary page for displaying a redirection when "Automatic redirection" is disabled (not default setting).

References

URL http://secunia.com/advisories/15423/
URL http://secunia.com/secunia_research/2003-1/advisory/
URL http://www.opera.com/freebsd/changelogs/801/#security