Description
Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before 9.25 allows remote attackers to cause a denial of service (CPU consumption) via a crafted bitmap (BMP) file that triggers a large number of calculations and checks.
References (6)
Core 6
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26721
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28314
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/3482
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00001.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/4261
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/484605/100/200/threaded
Scores
EPSS
0.0135
EPSS Percentile
80.3%
Details
CWE
CWE-189
CWE-399
Status
published
Products (11)
opera/opera_browser
9.0 (3 CPE variants)
opera/opera_browser
9.01
opera/opera_browser
9.02
opera/opera_browser
9.10
opera/opera_browser
9.12
opera/opera_browser
9.20 (2 CPE variants)
opera/opera_browser
9.21
opera/opera_browser
9.22
opera/opera_browser
9.23
opera/opera_browser
9.24
... and 1 more
Published
Dec 24, 2007
Tracked Since
Feb 18, 2026