Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
TITLE: Opera Web Browser Basic Authentication Server Domain Spoofing Vulnerability
CLASS: Design Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 04 2007 12:00AM
UPDATE: Jun 07 2007 03:40AM
CREDIT: Alex and Ronald of The Hacker Webzine discovered this issue.
VULNERABLE:
Opera Software Opera Web Browser 9.21NOT VULNERABLE:
Vai alla pagina originale su Security Focus
Discussion
Opera Web Browser is prone to an HTTP basic authentication domain-spoofing vulnerability.
Attackers may exploit this vulnerability via a malicious webpage to spoof the origin of an HTTP basic authentication dialog that the victim may trust. Attackers may find this issue useful in phishing or other attacks that rely on content spoofing.
Opera 9.21 is vulnerable; other versions may also be affected.
Reports indicate that other browsers are also vulnerable, but this has not been confirmed.
Exploit
To exploit this issue, an attacker must entice an unsuspecting user to visit a maliciously crafted webpage.
The following proof-of-concept webpage has been created to demonstrate this issue:
http://testing.bitsploit.de/test.html
Solution
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
References
References:
- Opera Homepage (Opera Software)
- Opera HTTP Auth Phishing (The Hacker Webzine)