SECUNIA ADVISORY ID: SA23613
VERIFY ADVISORY: http://secunia.com/advisories/23613/
CRITICAL: Highly critical
IMPACT: System access
SOFTWARE: Opera 9.x - http://secunia.com/product/10615/
DESCRIPTION: Two vulnerabilities have been reported in Opera, which can be exploited by malicious people to compromise a user's system.
1) An unspecified error when processing JPEG files can be exploited to cause a heap-based buffer overflow via a JPEG file with a specially crafted DHT marker.
2) An error within createSVGTransformFromMatrix() can be exploited by passing an incorrect object to the said function.
Successful exploitation of the vulnerabilities allow execution of arbitrary code.
SOLUTION: Update to version 9.10.
PROVIDED AND/OR DISCOVERED BY: The vendor credits iDefense Labs.
ORIGINAL ADVISORY:
http://www.opera.com/support/search/supsearch.dml?index=851
http://www.opera.com/support/search/supsearch.dml?index=852
|
This article comes from Ravens PHP Scripts
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2621
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2621