CVE-2002-0898

Opera Web Browser 6.0.1-6.0.2 - Unauthenticated Arbitrary File Upload via Input File Tag Newline Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0898. PoCs published by GreyMagic Software.

AI-analyzed exploit summary This exploit leverages a vulnerability in Opera 6.01/6.02 where an HTML-encoded newline character ('
') in a file input field tricks the browser into submitting an arbitrary file without user consent. The PoC demonstrates how a malicious webpage can automatically upload a specified file to a server upon page load.

Description

Opera 6.0.1 and 6.0.2 allows a remote web site to upload arbitrary files from the client system, without prompting the client, via an input type=file tag whose value contains a newline.

Exploits (1)

exploitdb WORKING POC VERIFIED

by GreyMagic Software · htmlremotewindows

https://www.exploit-db.com/exploits/21483

View Code ZIP pw:eip

This exploit leverages a vulnerability in Opera 6.01/6.02 where an HTML-encoded newline character ('
') in a file input field tricks the browser into submitting an arbitrary file without user consent. The PoC demonstrates how a malicious webpage can automatically upload a specified file to a server upon page load.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Opera 6.01/6.02

No auth needed

Prerequisites: Victim must visit a malicious webpage using Opera 6.01/6.02 · File path must be known or guessed by the attacker

MITRE ATT&CK