In association with heise online

08 March 2010, 09:42

Dangerous security hole in Opera

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Several security experts report a security issue in the Opera web browser. An incorrectly set value in HTTP headers allows attackers to cause a buffer overflow that allows them to execute arbitrary code on a vulnerable system. Secunia has confirmed the hole and says the latest version of Opera, 10.50 for Windows is affected while other versions may be affected.

Secunia recommends that users only visit trusted sites and do not follow untrusted links. Another option is to use an alternative browser until Opera provides appropriate patches. According to a report in The Register, Opera is in the process of pushing out a patch for the bug, even though it is not sure the flaw can be exploited. Opera says that the bug "primarily causes a crash" and recommends that DEP (Data Execution Prevention) is enabled to mitigate the problem.

(djwm)

Print Version | Send by email | Permalink: http://h-online.com/-948277
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit