Latest

RSS





Information about your favorite browser: news, articles and more.


« Meebo Extension for Flock
Firefox AJAX Security Risk »

Opera SSL Certificate “Stealing” Weakness

Published June 29th, 2006 in All Categories, Exploits & Vulnerabilities, Opera

Secunia Research has discovered a weakness in Opera, which can be exploited to display the SSL opera2.jpgcertificate from a trusted site on an untrusted site.

The weakness is caused due to Opera not resetting the SSL security bar after displaying a download dialog from a SSL enabled web site. This allows an untrusted web site to display yellow SSL security bar from a trusted web site.

NOTE: A more convincing exploit can be done using pop-up windows, which do not have a visible address bar.

The weakness has been confirmed in Opera 8.54. Prior versions may also be affected.

Solution:
Upgrade to version 9.0. Secunia - Advisories - Opera SSL Certificate “Stealing” Weakness


Visit our Home Page



Popular Posts

Subscribe Social Bookmark



Dropped here by your Search Provider? Please use the same keyword in the Google box below to find whatever you are looking for.
Google
Web This Site

Categories

Archives