A vulnerability has been discovered in the Opera web browser that could be exploited by hackers to run code on a user's system
A buffer overflow problem in Opera could be exploited to execute arbitrary code

JPEG flaw uncovered in Opera browser

Buffer overflow affects version 8.54 of the popular browser

Matt Chapman

vnunet.com, 23 Jun 2006

A vulnerability has been discovered in the Opera web browser that could be exploited by hackers to run code on a user's system. 

Security website Secunia rated the flaw as highly critical

Advertisement

The problem is caused by an integer overflow when the browser processes JPEG images, and could be activated using a specially crafted JPEG image.

If excessively large height and width values are specified in certain fields of a JPEG file, Opera allocates insufficient memory for the image.

This leads to a buffer overflow when the image is loaded into memory, which can be exploited to execute arbitrary code.

The problem was first reported by security management firm VigilantMinds

The flaw is known to affect version 8.54 of the Opera browser and may also be found in prior versions. The problem can be resolved by upgrading to Opera 9.

"Additionally, users should exercise caution while accessing the web, and should do so from accounts with limited privileges," said a statement from VigilantMinds.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Have your say on this article

Further reading

Opera's integration of BitTorrent should mean faster downloads of large files

Opera sings praises of BitTorrent

Forthcoming Opera 9 will include access to BitTorrent search engine

Opera has released a new version of its web browser for Java-enabled mobile phones

Opera releases Mobile Mini 2.0 browser

Updated browser for Java phones

Nintendo Wii sings praises of Opera

Next-gen console will run Opera browser

Opera sings praises of Mini mobile browser

Developer claims faster downloads and lower mobile data usage

Related whitepapers

Related jobs

Most watched

V3.co.uk weekly debrief, 13 Nov 09

This week we discuss the inaugural V3.co.uk Summit

Summit: Salesforce.com on SaaS and information overload

How web services contribute to data headaches

More video

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

V3.co.uk weekly debrief, 13 Nov 09

This week we discuss the inaugural V3.co.uk Summit

Fingers on keyboard

New Flash vulnerability discovered

Web sites could be vulnerable to Flash attacks

Chris Adams

Summit: Microsoft Office to the rescue

Chris Adams, Office Client product manager for Microsoft UK, explains...

Illegal downloader

Industry and human rights campaigners united in opposition to "three strikes" plan

Critics says government proposals to curb illegal downloading are unworkable...

Primary Navigation