CVE-2007-5276

Name of the Vulnerable Software and Affected Versions: Opera version 9

Description: The issue allows remote attackers to conduct DNS rebinding attacks. This is possible because Opera drops DNS pins based on failed connections to irrelevant TCP ports. For example, if a DNS pin had been established for a session on port 80, a URL on port 81 in an IMG SRC can lead to a DNS rebinding attack.

Recommendations: For Opera version 9, consider restricting access to irrelevant TCP ports to minimize the risk of DNS rebinding attacks. As a temporary workaround, avoid using Opera for sensitive operations until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.