Description
Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties.
Exploits (1)
References (7)
Core 7
Core References
Broken Link third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/1185
Broken Link, Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/438872/100/0/threaded
Broken Link, Exploit, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/18758
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27531
Broken Link vdb-entry
x_refsource_osvdb
http://www.osvdb.org/27511
Broken Link, Exploit x_refsource_misc
http://echo.or.id/adv/adv35-y3dips-2006.txt
Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/1972
Scores
EPSS
0.1105
EPSS Percentile
93.5%
Details
CWE
CWE-119
Status
published
Products (1)
opera/opera_browser
< 9.01
Published
Jul 06, 2006
Tracked Since
Feb 18, 2026