CVE-2005-4718

Opera <8.02 - DoS

Title source: llm

Description

Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.

Exploits (2)

exploitdb WORKING POC VERIFIED

by posidron · htmldoswindows

https://www.exploit-db.com/exploits/1255

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by posidron · htmldosmultiple

https://www.exploit-db.com/exploits/1254

View Code ZIP pw:eip

References (3)

[Broken Link, Exploit, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1015067

[Exploit] http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5055

[Exploit] http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5054

Scores

EPSS 0.0549

EPSS Percentile 90.2%

Details

Status published

Products (1)

opera/opera_browser < 8.02

Published Dec 31, 2005

Tracked Since Feb 18, 2026