CVE-2004-0537

Name of the Vulnerable Software and Affected Versions Opera versions 7.50 and earlier

Description The issue allows remote web sites to provide a "Shortcut Icon" (favicon) that is wider than expected, which could allow the web sites to spoof a trusted domain and facilitate phishing attacks using a wide icon and extra spaces. This flaw may allow a malicious user to spoof a trusted web site by crafting a favicon.ico image to resemble the text of a trusted web site address, potentially allowing impersonation of a trusted web site and resulting in a loss of integrity.

Recommendations For Opera versions 7.50 and earlier, update to a version later than 7.50 to resolve the issue. As a temporary workaround, consider restricting the display of favicons from untrusted websites to minimize the risk of spoofing.