CVE-2018-18913 : Security Advisory and Response
Learn about CVE-2018-18913 affecting Opera browser versions prior to 57.0.3098.106. Find out how attackers exploit DLL Search Order hijacking and steps to mitigate the risk.
Opera browser version prior to 57.0.3098.106 is vulnerable to a DLL Search Order hijacking exploit, potentially granting attackers complete control over the system.
Understanding CVE-2018-18913
What is CVE-2018-18913?
This vulnerability in Opera browser allows attackers to execute a DLL Search Order hijacking exploit by sending a ZIP archive containing a malicious DLL and HTML page to the victim.
The Impact of CVE-2018-18913
The exploit could lead to attackers gaining full control over the system upon opening the compromised document, regardless of their location within the system.
Technical Details of CVE-2018-18913
Vulnerability Description
The issue arises from how Opera searches for the shcore.dll and dcomp.dll files in the same system-wide directory where the HTML file is executed.
Affected Systems and Versions
- Affected: Opera browser versions prior to 57.0.3098.106
Exploitation Mechanism
- Attackers send a ZIP archive with a malicious DLL and HTML page to the victim.
- Opening the document triggers the exploit, potentially granting the attacker system control.
Mitigation and Prevention
Immediate Steps to Take
- Update Opera browser to version 57.0.3098.106 or later.
- Be cautious when opening files from untrusted sources.
Long-Term Security Practices
- Regularly update software to patch known vulnerabilities.
- Implement security measures to prevent unauthorized access.
Patching and Updates
- Stay informed about security updates for Opera browser.