A vulnerability has been discovered in the Opera web browser that could be exploited by hackers to run code on a user's system
A buffer overflow problem in Opera could be exploited to execute arbitrary code

JPEG flaw uncovered in Opera browser

Buffer overflow affects version 8.54 of the popular browser

Matt Chapman

vnunet.com, 23 Jun 2006

A vulnerability has been discovered in the Opera web browser that could be exploited by hackers to run code on a user's system. 

Security website Secunia rated the flaw as highly critical

Advertisement

The problem is caused by an integer overflow when the browser processes JPEG images, and could be activated using a specially crafted JPEG image.

If excessively large height and width values are specified in certain fields of a JPEG file, Opera allocates insufficient memory for the image.

This leads to a buffer overflow when the image is loaded into memory, which can be exploited to execute arbitrary code.

The problem was first reported by security management firm VigilantMinds

The flaw is known to affect version 8.54 of the Opera browser and may also be found in prior versions. The problem can be resolved by upgrading to Opera 9.

"Additionally, users should exercise caution while accessing the web, and should do so from accounts with limited privileges," said a statement from VigilantMinds.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Have your say on this article

Further reading

Opera's integration of BitTorrent should mean faster downloads of large files

Opera sings praises of BitTorrent

Forthcoming Opera 9 will include access to BitTorrent search engine

Opera has released a new version of its web browser for Java-enabled mobile phones

Opera releases Mobile Mini 2.0 browser

Updated browser for Java phones

Nintendo Wii sings praises of Opera

Next-gen console will run Opera browser

Opera sings praises of Mini mobile browser

Developer claims faster downloads and lower mobile data usage

Related whitepapers

Related jobs

Most watched

Motorola logo

Motorola demos femtocell hardware

Device combines femtocell, SIP softphone and digital photoframe

HTC Hero

Video: HTC Hero launch

Handset maker unveils its latest Android-based smartphone

More video

IT white papers

Search white papers

Top categories

Poll

Poll: Summer smartphones

Poll: Summer smartphones

Which smartphone will you be taking to the beach this summer?

View poll results

Advertisement

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Spotlight

great wall of china

Podcast Special: Views from the Valley

The hottest stories from the US, including news of China's...

Red Hat

Red Hat beta builds on virtualisation plans

Kernel-based Virtual Machine virtualisation added to latest Enterprise Linux beta

Mobile phone charger

Top 10 articles, 3 July 09

Free upgrades for Windows 7, and standard mobile phone chargers...

Overheating iPhones: Sorry I'll have to call you back, I'm in a heat wave

The heat wave may have broken in the UK, but...

Primary Navigation