EIP-2026-102712

PRE-CVE

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (2)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102712. PoCs published by Marc Schoenefeld.

AI-analyzed exploit summary This Java applet exploits insecure proprietary design in Opera 7.54's Java implementation, allowing violation of Sun's Java secure programming guidelines. It demonstrates access to the browser's JavaScript window object and runtime, potentially enabling sensitive information disclosure or DoS attacks.

Description

Opera Web browser 7.54 java implementation - Multiple Vulnerabilities (2)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marc Schoenefeld · javadoslinux

https://www.exploit-db.com/exploits/24756

View Code ZIP pw:eip

This Java applet exploits insecure proprietary design in Opera 7.54's Java implementation, allowing violation of Sun's Java secure programming guidelines. It demonstrates access to the browser's JavaScript window object and runtime, potentially enabling sensitive information disclosure or DoS attacks.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Opera Web Browser 7.54

No auth needed

Prerequisites: Victim must visit a webpage hosting the malicious applet · Java must be enabled in the Opera browser

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026