https://www.exploit-db.com/exploits/22239
https://cxsecurity.com/issue/WLB-2007100074
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-073

Opera是一款开放源代码的WEB浏览器。Opera在处理包含用户名的URI时缺少正确边界缓冲区检查，远程攻击者可以利用这个漏洞构建恶意页面，诱使用户点击，使Opera产生缓冲区溢出，可能以Opera权限在系统上执行任意指令。为了安全目的，Opera当用户访问包含用户名的URI时会显示警告对话框，但是Opera对用户名缺少正确的长度检查，超长的用户名可以导致触发缓冲区溢出，攻击者构建的WEB页面，精心设计用户名数据，当诱使用户访问后，可能以用户进程在系统上执行任意指令。

source: http://www.securityfocus.com/bid/6811/info

The Opera browser for Win32 (and possibly other) systems is prone to a remotely exploitable buffer overflow condition. For security purposes, Opera will display a warning any time a user of the client visits a link containing a username as part of the URI. An excessively long username will trigger a buffer overflow condition related to this security feature that may overwrite the stack frame of the affected function. Attackers may exploit this vulnerability to execute instructions on client systems. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/22239.tgz

来源:BID
名称:6811
链接:http://www.securityfocus.com/bid/6811
来源:XF
名称:opera-username-url-bo(11281)
链接:http://xforce.iss.net/xforce/xfdb/11281
来源:BUGTRAQ
名称:20030320Opara6.06Released,Security-HoleLeft
链接:http://www.securityfocus.com/archive/1/315794
来源:BUGTRAQ
名称:20030209OperaUsernameBufferOverflowVulnerability
链接:http://www.securityfocus.com/archive/1/311194
来源:SREASON
名称:3253
链接:http://securityreason.com/securityalert/3253
来源：NSFOCUS
名称：4373
链接：http://www.nsfocus.net/vulndb/4373