[CVE-2012-6460] Truncated dialogs may be used to trick users


Advisory: Truncated dialogs may be used to trick users


CVE-ID: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6460


UPDATE Link: http://www.opera.com/fr/security/advisory/1028


Announced: August 27, 2012
Reporter: Security researcher Jordi Chancel
Impact: Low
Products: Opera
Fixed in: Opera 12.02 and Opera 11.67


Description

When an important dialog is being displayed, such as a download dialog, the entire dialog should be visible, so that the user can clearly see what the dialog’s buttons will do. In some cases, specific user interactions can cause Opera not to enforce this correctly, allowing the window to become smaller than the dialog. The edge of the window remains visible, but users may assume misleading buttons on an underlying page are part of the dialog buttons, and click on the part of the dialog’s buttons that are still visible. This can be used to cause the user to download and run executables unexpectedly, or perform other unwanted actions.

Opera’s Response

Opera Software has released Opera 12.02 and Opera 11.67, where this issue has been fixed.


Credits

I haven’t been credited for this vulnerability, because i had written a blog post which disclosed the explanation of this security bug.


  • Vidéo de démonstration :


-Security Researcher Jordi Chancel

Comments are closed.