CVE-2008-1762

Opera < 9.27 - Remote Code Execution via Crafted CANVAS Image Pattern

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1762. PoCs published by Michal Zalewski.

AI-analyzed exploit summary This is a fuzzing script designed to trigger memory corruption vulnerabilities in the Opera browser's Canvas implementation. It tests various Canvas API calls with random inputs to exploit potential vulnerabilities in versions prior to Opera 9.27.

Description

Opera before 9.27 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted scaled image pattern in an HTML CANVAS element, which triggers memory corruption.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Michal Zalewski · htmldoslinux
https://www.exploit-db.com/exploits/31594

This is a fuzzing script designed to trigger memory corruption vulnerabilities in the Opera browser's Canvas implementation. It tests various Canvas API calls with random inputs to exploit potential vulnerabilities in versions prior to Opera 9.27.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Opera Web Browser < 9.27
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting this script
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.opera.com/support/search/view/882/
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28585
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29679
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41627
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29735
Patch, Vendor Advisory x_refsource_confirm
http://www.opera.com/docs/changelogs/linux/927/
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29662
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1084/references
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200804-14.xml

Scores

EPSS 0.0760
EPSS Percentile 93.8%

Details

CWE
CWE-399
Status published
Products (30)
opera/opera_browser 5.0 (8 CPE variants)
opera/opera_browser 5.02
opera/opera_browser 5.10
opera/opera_browser 5.11
opera/opera_browser 5.12
opera/opera_browser 6.0 (6 CPE variants)
opera/opera_browser 6.1 (2 CPE variants)
opera/opera_browser 6.01
opera/opera_browser 6.02
opera/opera_browser 6.03
... and 20 more
Published Apr 12, 2008
Tracked Since Feb 18, 2026