[CVE-2012-1924] Small windows can be used to trick users into executing downloads


Advisory: Small windows can be used to trick users into executing downloads


CVE-ID: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1924


UPDATE Link: http://www.opera.com/fr/security/advisory/1010


Announced: March 26, 2012
Reporter: Security researcher Jordi Chancel
Impact: High
Products: Opera
Fixed in: Opera 11.62


Description

When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end up running a downloaded executable. Additional social engineering steps are needed to ensure that the user presses the correct key sequence, without being able to show any relevant visual feedback, as the page cannot see that the keys are being pressed.

Opera’s Response

Opera Software has released Opera 11.62, where this issue has been fixed.


Credits

Thanks to Jordi Chancel for reporting this issue to Opera Software.


  • Vidéo de démonstration :


-Security Researcher Jordi Chancel

Comments are closed.