TITLE:
Opera Bookmark Large Title Denial of Service Weakness

SECUNIA ADVISORY ID:
SA17963

VERIFY ADVISORY:
http://secunia.com/advisories/17963/

CRITICAL:
Not critical

IMPACT:
DoS

WHERE:
>From remote

SOFTWARE:
Opera 8.x
http://secunia.com/product/4932/

DESCRIPTION:
A weakness has been reported in Opera, which can be exploited by
malicious people to cause a DoS (Denial of Service).

The weakness is caused due to an error in the handling of large page
titles. This can be exploited by tricking a user into bookmarking a
page with an overly long title.

Successful exploitation causes the browser to crash when the affected
browser is started up again after an attack, but requires that the
Input Method Editor (IME) is installed. Users may have to remove the
"autosave.win" file in order to be able to use the affected browser.

SOLUTION:
Update to version 8.51.
http://www.opera.com/download/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Tatsuya Matsumoto and jp-CERT.

ORIGINAL ADVISORY:
Opera:
http://www.opera.com/support/search/supsearch.dml?index=821

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------