Exploitation Summary
EIP tracks 1 public exploit for CVE-2004-1491. PoCs published by Giovanni Delvecchio.
AI-analyzed exploit summary This exploit leverages a default configuration in Opera for Linux that uses the KDE 'kfmclient' utility to execute arbitrary commands via a malicious KDE config file. The PoC demonstrates command execution by downloading and running a backdoor.
Description
Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.
Exploits (1)
This exploit leverages a default configuration in Opera for Linux that uses the KDE 'kfmclient' utility to execute arbitrary commands via a malicious KDE config file. The PoC demonstrates command execution by downloading and running a backdoor.