Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-1834 — Unexpected Sign Extension in Browser

CWE-189 CWE-194 — Unexpected Sign Extension5 documents5 sources

Severity

5.1MEDIUMNVD

EPSS

15.8%

top 5.26%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Opera Browser

Timeline

PublishedApr 19

Latest updateMay 1

Description

Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDopera/opera_browser8.53+52

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-hvcx-6rqp-7fpg: Integer signedness error in Opera before 8↗2022-05-01

▶

CVEList

CVE-2006-1834: Integer signedness error in Opera before 8↗2006-04-19

▶

💥Exploits & PoCs

Exploit-DB

Opera Web Browser 8.52 - Stylesheet Attribute Buffer Overflow↗2006-04-13

▶

📐Framework References

CWE

Unexpected Sign Extension↗

▶