Two Severe Flaws In Opera Browser

April 3rd, 2008

Two Severe Flaws In Opera Browser

Opera has warned of two severe bugs in its browser, which could allow attackers to invade a system via simple elements embedded in web pages.

The first bug involves the browser’s handling of HTML 5 canvas elements, which allow dynamic rendering of bitmap images that can be scripted.
If an image is scaled in a particular way, it can cause the browser to crash, which can cause memory corruption. Opera classified the bug “moderately severe.”

The second bug involves Opera’s handling of news feed sources.
When the browser encounters a feed source, it normally triggers a user prompt, but a specially crafted source could be exploited to cause an invalid memory access and crash the browser. This bug is ranked “highly severe.”

Both bugs can be used to exploit malicious code on a system and they both are fixed in the new browser version, 9.27.

Share this item with others:

More on CyberInsecure:

Critical Flaws Patched In Opera 9.61, New Zero-day Vulnerability Remains Unpatched

Extremely Severe Vulnerabilities Patched In Opera Browser

7 Vulnerabilities, Some Are Extremely Severe, Patched In New Opera 9.52

Opera Software Patches Vulnerabilities In Opera 9.64 And Adds Anti-exploitation Mechanisms

Opera Software Fixes Two Security Vulnerabilities In Opera 9.60

Posted in Vulnerabilities |

Print This Post

This entry was posted on Thursday, April 3rd, 2008 at 2:43 pm and is filed under Vulnerabilities. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

If you found this information useful, consider linking to it from your own website.
Just copy and paste the code below into your website (Ctrl+C to copy)
It will look like this: Two Severe Flaws In Opera Browser

Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.