[security-alerts] FW: [SA15781] Opera Suppressed "Download Dialog" File Execution Vulnerability

["Kazennov, Vladimir" <Vladimir.Kazennov@xxxxxxxxxx>]

> 
> 
> TITLE:
> Opera Suppressed "Download Dialog" File Execution Vulnerability
> 
> SECUNIA ADVISORY ID:
> SA15781
> 
> VERIFY ADVISORY:
> http://secunia.com/advisories/15781/
> 
> CRITICAL:
> Highly critical
> 
> IMPACT:
> System access
> 
> WHERE:
> From remote
> 
> SOFTWARE:
> Opera 8.x
> http://secunia.com/product/4932/
> 
> DESCRIPTION:
> Secunia Research has discovered a vulnerability in Opera, which can
> be exploited by malicious people to trick users into downloading and
> executing arbitrary programs on a user's system.
> 
> A design error in the processing of mouse clicks in new browser
> windows and the predictability of the position of the "File Download"
> dialog box can be exploited to trick the user into clicking on the
> "Run" button of the dialog box. This is exploited by first causing a
> "File Download" dialog box to be displayed underneath a new browser
> window, and then tricking the user into double-clicking within a
> specific area in the new window. This will result in an unintended
> click of the "Open" button in the hidden "File Download" dialog box.
> 
> The vulnerability has been confirmed in version 8.01. Other versions
> may also be affected.
> 
> SOLUTION:
> Update to version 8.02 or later.
> http://www.opera.com/download/
> 
> PROVIDED AND/OR DISCOVERED BY:
> Jakob Balle, Secunia Research
> 
> ORIGINAL ADVISORY:
> http://secunia.com/secunia_research/2005-19/
> 
> ----------------------------------------------------------------------