Opera hit by buffer overflow glitch
PrintBig links crash browser
Posted in Enterprise Security, 19th October 2006 16:17 GMT
Free whitepaper – Taking control of your data demons: Dealing with unstructured content
Opera users are being urged to upgrade to a new version of the browser following the discovery of a potentially serious security bug.
The flaw means that vulnerable versions of the browsers will crash when visiting maliciously constructed web sites containing overly long (more than 256 bytes) URLs. Successful exploitation of this heap-based buffer overflow flaw creates a means for hackers to load malware onto the machines of visiting surfers.
The vulnerability affects versions 9.0 and 9.01 of Opera on Windows and Linux. Version 8.x of the browser software is not at risk to this particular flaw but rather than downgrading a better solution is to upgrade to version 9.02, as explained in Opera's advisory here. Opera described the flaw, discovered by security researcher firm iDefense, as "moderate". ®
Free whitepaper – Taking control of your data demons: Dealing with unstructured content
Total cost of ownership of Dell, HP and IBM blade solutions
Taking control of your data demons: Dealing with unstructured content
The Great Virtualization Dilemma of the Next Decade
Out-of-box comparison between Dell, HP, and IBM blade servers
A Cure for Server Sprawl