CVE-2010-1349

Opera 10.10-10.50 - Remote Code Execution via Large Content-Length Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1349. PoCs published by Marcin Ressel.

AI-analyzed exploit summary This exploit targets an integer overflow vulnerability in Opera 10.10-10.50, leading to out-of-bounds array access. The PoC sends a malformed HTTP response with an excessively large Content-Length value to trigger the overflow.

Description

Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.

Exploits (1)

exploitdb WORKING POC

by Marcin Ressel · phpdoswindows

https://www.exploit-db.com/exploits/11622

View Code ZIP pw:eip

This exploit targets an integer overflow vulnerability in Opera 10.10-10.50, leading to out-of-bounds array access. The PoC sends a malformed HTTP response with an excessively large Content-Length value to trigger the overflow.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Opera 10.10 - 10.50

No auth needed

Prerequisites: Network access to the target system · Opera browser version 10.10-10.50

MITRE ATT&CK