techrevu Logo with link to Main Page  
'Highly Critical' Flaw Found In Opera Browser by Posted by Ryan Naraine
 ZDNet.com, Secunia, Opera, PC World News  ISBN/ITEM#: CM100309HCFIOB
Date: 09 March 2010

Links: ZDNet.com Blog Entry / Secunia Advisory SA38820 / Opera Website / PC World Article /

While Opera advertises Version 10.50 (the latest one) as being the fastest browser available, apparently its speed offers little in the way of protection against an unpatched remote code execution flaw, one rated as "highly critical" by Secunia.

[Editor's Note: According to the PC World article, "Opera Software will soon patch a vulnerability in its Web browser that could allow an attacker to run malicious software on a Windows computer."]

From release/information:

Security researchers are sounding the alarm for an unpatched, remote code execution flaw in the Opera Web browser.

The vulnerability, rated "highly critical" by Secunia, can be exploited by malicious people to take complete control a user’s system.

From Secunia's advisory:

    The vulnerability is caused due to an error when processing HTTP responses having a malformed "Content-Length" header. This can be exploited to cause a heap-based buffer overflow via an overly large 64-bit "Content-Length" value, having the higher 32-bit part negative.

The vulnerability is confirmed in version 10.50 for Windows. Other versions may also be affected.

(Source: ZDNet.com, Secunia, Opera, PC World)

Return to Index

We're interested in your feedback. Just fill out the form below and we'll add your comments as soon as we can look them over.
Name:
Email:
Comments

© 2002-2010TechRevu

advertising index / info
Our advertisers make TechRevu possible, and your consideration is appreciated.

Our Other Pubs:

Do You SFRevu? Thousands of Intelligent Beings Do Every Month

Gumshoe Review - a literary investigation.

  © 2002-2010TechRevu