In association with heise online

30 April 2010, 15:41

Opera closes "extremely severe" hole

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Opera has released version 10.53 of its Opera web browser for Windows and Mac OS X in order to close a vulnerability which the software maker rates as "extremely severe". The hole allows crafted web pages to inject and run code on a PC. It would only be necessary to visit such a web page for the vulnerability to be exploited.

The hole is created when a script makes multiple calls to modify the documents contents, causing Opera to reference an uninitialised value. This could lead to a browser crash and, using additional techniques, allow for code injection. Opera had only just released version 10.52 three days ago. Opera 10.53 can be downloaded from the vendors site.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit