CVE-2007-6523

Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before 9.25 allows remote attackers to cause a denial of service (CPU consumption) via a crafted bitmap (BMP) file that triggers a large number of calculations and checks.

Published: Dec 24, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-6523
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-189
CWE-399

Affected Software
References

Software	From	Fixed in
opera / opera_browser	9.50-beta1	9.50-beta1.x
opera / opera_browser	9.02	9.02.x
opera / opera_browser	9.24	9.24.x
opera / opera_browser	9.12	9.12.x
opera / opera_browser	9.20	9.20.x
opera / opera_browser	9.21	9.21.x
opera / opera_browser	9.0-beta1	9.0-beta1.x
opera / opera_browser	9.23	9.23.x
opera / opera_browser	9.20-beta1	9.20-beta1.x
opera / opera_browser	9.0-beta2	9.0-beta2.x
opera / opera_browser	9.22	9.22.x
opera / opera_browser	9.01	9.01.x
opera / opera_browser	9.0	9.0.x
opera / opera_browser	9.10	9.10.x

http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00001.html
http://secunia.com/advisories/28314
http://securityreason.com/securityalert/3482
http://www.securityfocus.com/archive/1/484605/100/200/threaded
http://www.securityfocus.com/bid/26721
http://www.vupen.com/english/advisories/2007/4261

Vulnerability Database

289,697

CVE-2007-6523