Opera Web Browser 7 – IFRAME Zone Restriction Bypass

Opera Web Browser 7 – IFRAME Zone Restriction Bypass

漏洞ID 1054231 漏洞类型
发布时间 2003-10-24 更新时间 2003-10-24
图片[1]-Opera Web Browser 7 – IFRAME Zone Restriction Bypass-安全小百科CVE编号 N/A
图片[2]-Opera Web Browser 7 – IFRAME Zone Restriction Bypass-安全小百科CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23291
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/8887/info

A flaw in the Opera web browsers security model has been discovered that could allow an attacker to access a users filesystem within the Local Zone. The problem occurs when handling malformed HTML iframes which point to local system locations. Exploitation of this vulnerability could result in the exposure of sensitive data or could potentially lead to the corruption of system critical files.

**UPDATE: The vendor has contacted Symantec and has stated that this is not a vulnerability. Symantec has not been able to reproduce the claims made by the individual who reported this issue. This record is being retired, though it may be re-activated if further findings confirm existence of the vulnerability. 

<iframe name="abc" src="file:///C:/"></iframe>

相关推荐: Macromedia JRun Administrative Authentication Bypass Vulnerability

Macromedia JRun Administrative Authentication Bypass Vulnerability 漏洞ID 1101805 漏洞类型 Input Validation Error 发布时间 2002-06-28 更新时间 2…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享