CVE-2018-18913 – Opera Search Order Hijacking Vulnerability

The CVE-2018-18913 states that Before version 57.0.3098.106, the Opera web browser had a security problem called DLL Search Order Hijacking. This issue happens when an attacker creates a ZIP file that contains an HTML page and a harmful Dynamic Link Library (DLL) file.

When a victim opens the infected HTML document, the Opera browser may accidentally load the harmful DLL file because of how it searches for certain system files. The browser looks for important files like “shcore.dll” and “dcomp.dll” in the same system directory where the HTML file is located. If the attacker has placed a harmful version of these DLLs in that folder, it could give them unauthorized access and control over the victim’s system.

This vulnerability allows attackers to run any code remotely, which means they could take full control of the affected system. Therefore, users of the Opera browser before the mentioned version should update their software to reduce this risk and safeguard their systems against potential attacks.

https://nvd.nist.gov/vuln/detail/CVE-2018-18913
https://malware.news/t/opera-search-order-hijacking-vulnerability-cve-2018-18913-lucideus/27653
https://security.opera.com/en/hall-of-fame/

Written by: Nipun Jaswal

Rate it

Invite Me as a Speaker? REACH: [email protected]

CVE-2018-18913 – Opera Search Order Hijacking

Post comments (0)

Leave a reply Cancel

Your email address will not be published. Required fields are marked *

emailInvite Me as a Speaker? REACH: [email protected]

CVE-2018-18913 – Opera Search Order Hijacking

Post comments (0)

Leave a replycancel Cancel

Your email address will not be published. Required fields are marked *

Invite Me as a Speaker? REACH: [email protected]

Leave a reply Cancel