##############################################################################
#
#  Opera Multiple Malformed HTML Parsing Denial of Service Vulnerabilities (Windows)
#
#  Copyright: OS2A and it's member companies
#
#  Date Written: 2006/02/21
#
#  $Revision: 1.1 $
#
#  $Log: os2a_opera_html_parsing_dos_win_601259.nasl,v $
#  Revision 1.1  2006/02/22 04:17:26  shraddha
#  To Production Issue #1916
#
#  Revision 1.2  2006/02/21 09:53:23  hpavithra
#  Formatting changes
#  Removed an extra exit statement
#
#  Revision 1.1  2006/02/21 06:31:53  hshreesha
#  issue #1916
#
#  ------------------------------------------------------------------------
#  This program was written by OS2A and/or it's member companies and is
#  licensed under the GNU GPL license. Please see below for details. This
#  header contains information regarding licensing terms under the GPL, and
#  information regarding obtaining source code from the Author. Consequently,
#  pursuant to section 3(c) of the GPL, you must accompany the information
#  found in this header with any distribution you make of this Program.
#  ------------------------------------------------------------------------
##############################################################################


if(description)
{
 script_id(601259);
 script_bugtraq_id(15124);
 script_copyright(english:"Copyright (C) 2006 OS2A");
 script_version("$Revision: 1.1 $");
 script_category(ACT_GATHER_INFO);
 script_family(english:"Denial of Service");
 name["english"] = "Opera Multiple Malformed HTML Parsing Denial of Service Vulnerabilities (Windows)";
 script_name(english:name["english"]);
 summary["english"] = "Check for vulnerable version of Opera.";
 script_summary(english:summary["english"]);
 desc["english"] = "
 Overview : This host has Opera Browser installed, which is prone to
 multiple denial of service vulnerabilities.

 These issues are triggered when the vulnerable browser tries to parse
 malformed HTML content.

 Impact : A successful attack can cause the browser to crash abruptly.

 Scope of impact is restricted to application level only.

 Affected Software : Opera versions 8.52 and prior.

 Affected Platform : Windows (Any).

 Solution : No vendor-supplied patches are available for this issue as on
 21th February 2006. Information regarding this issue will be updated as
 soon as a patch is available.
 
 References : http://www.securityfocus.com/bid/15124
 
 CVSS Score : 
 	CVSS Base Score     : 5.0 (AV:R/AC:L/Au:NR/C:N/I:N/A:C/B:A)
        CVSS Temporal Score : 4.5
 Risk factor : Medium";

 script_description(english:desc["english"]);
 script_dependencies("smb_hotfixes.nasl", "os2a_opera_version_600024.nasl");
 script_require_keys("SMB/WindowsVersion", "Opera/Win32/ProductVersion");
 exit(0);
}


if(!get_kb_item("SMB/WindowsVersion")){
        exit(0);
}

operaVer = get_kb_item("Opera/Win32/ProductVersion");
if(operaVer)
{
        if(egrep(pattern:"^[0-7]\.|8\.(0[1-2]|5[0-2]|0$)", string:operaVer)){
                security_warning(0);
        }
}