Heads up Opera users. New Vulnerability.

[Carbonyl]

Don't know why I am not configured to receive PMs but I didn't find an option.
However I found the php exploit on the web.
I was not able to make it run on my localhost. Not sure if there are any requirements.
Regarding the DoS problem, thats not a security issue in my opinion, more a stability issue. You won't be compromised that way.
Edit: haavard posted yet another message:
Twitter / Haavard: Our devs have looked furth ...

Interesting. Thanks for the information.

Not sure if you're still following this thread, or the one over on the Opera boards, but someone dropped a link to a PoC exploit that made some of the user's anti-virus go nuts. Since the intrusion in question was labeled as a Trojan, and since the vulnerability itself is too new to have been picked up by A/V vendors, it's a good bet that someone was using this new exploit to distribute old malware. I'd say remote code execution is possible and confirmed.

 

[sa1]

I don't know how antiviruses work but the link contained the same PoC code that I had earlier seen. That link itself linked just to a security site containing the PoC and didn't make the php even run so the AV was likely detecting the php code itself and not any other code getting executed. If malware sites had begun using the code in their sites, a malicious link observed in the wild would have had come up by now. I feel its still a potential exploit rather than a known one and I hope that a patch comes up soon.

Though this is offtopic those complaining about Win7 integration, you can disable it via this config option:
opera:config#UserPrefs|UseWindows7TaskbarThumbnails
(Paste and go on your address bar.) and those complaining about adblock on opera,
http://www.fanboy.co.nz/adblock/opera/
which works as well as ABP on ff except that you have to manually update the file once in a while.

 

[zezasu]

I don't know how antiviruses work but the link contained the same PoC code that I had earlier seen. That link itself linked just to a security site containing the PoC and didn't make the php even run so the AV was likely detecting the php code itself and not any other code getting executed. If malware sites had begun using the code in their sites, a malicious link observed in the wild would have had come up by now. I feel its still a potential exploit rather than a known one and I hope that a patch comes up soon.

Though this is offtopic those complaining about Win7 integration, you can disable it via this config option:
opera:config#UserPrefs|UseWindows7TaskbarThumbnails
(Paste and go on your address bar.) and those complaining about adblock on opera,
Fanboy's Adblock List for Opera
which works as well as ABP on ff except that you have to manually update the file once in a while.

Thanks for the tip, that wasn't an option before. Never checked it again. ^.^

 

[sa1]

Official response:
The Opera Security group - The malformed Content-Length header Security Issue
Edit: Secunia's neutral take:
Confusion about Opera vulnerability - Blog - Blog & News - Company