CVE-2007-2274

Opera Browser 9.2 - Denial of Service via Malformed Torrent File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2274. PoCs published by n00b.

AI-analyzed exploit summary This exploit generates a malformed torrent file that triggers a denial-of-service (DoS) condition in Opera 9.2's built-in BitTorrent client. The malformed file causes a memory leak, leading to 100% CPU usage and eventual crash.

Description

The BitTorrent implementation in Opera 9.2 allows remote attackers to cause a denial of service (CPU consumption and application crash) via a malformed torrent file. NOTE: the original disclosure refers to this as a memory leak, but it is not certain.

Exploits (1)

exploitdb WORKING POC VERIFIED

by n00b · cdosmultiple

https://www.exploit-db.com/exploits/3784

View Code ZIP pw:eip

This exploit generates a malformed torrent file that triggers a denial-of-service (DoS) condition in Opera 9.2's built-in BitTorrent client. The malformed file causes a memory leak, leading to 100% CPU usage and eventual crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Opera 9.2

No auth needed

Prerequisites: Opera 9.2 with BitTorrent client enabled

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/3784

VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/34079

Scores

EPSS 0.0820

EPSS Percentile 94.2%

Details

CWE

CWE-401

Status published

Products (1)

opera/opera_browser 9.2

Published Apr 25, 2007

Tracked Since Feb 18, 2026