CVE-2006-1834

Published: Apr 19, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

17513

vdb-entry

x_refsource_BID

1015912

vdb-entry

x_refsource_SECTRACK

20060413 SEC Consult SA-20060314 :: Opera Browser CSS Attribute Integer Wrap / Buffer Overflow

mailing-list

x_refsource_FULLDISC

http://www.opera.com/docs/changelogs/windows/854/

x_refsource_CONFIRM

opera-wcsncpy-css-bo(25829)

vdb-entry

x_refsource_XF

20060413 SEC Consult SA-20060314 :: Opera Browser CSS Attribute Integer Wrap / Buffer Overflow

mailing-list

x_refsource_BUGTRAQ

GLSA-200606-01

vendor-advisory

x_refsource_GENTOO

ADV-2006-1354

vdb-entry

x_refsource_VUPEN

http://www.sec-consult.com/259.html

x_refsource_MISC

SUSE-SR:2006:010

vendor-advisory

x_refsource_SUSE

20117

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-1834

Description

Affected Products

References