Added on 16 Dec 2008(740 Views)
Now that Opera 10 Alpha 1 is already out there, and it is impressive if you consider the Acid3 tests alone, the development team at Opera Software has issued Opera 9.63, an update that is meant to address a few critical security holes in the browser. If you are an Opera fan and you are the kind of user that is security oriented, then you must know that the recent Opera 9.61 and Opera 9.62 updates were also meant to plug some security holes. The problems within Opera 9.61 were fixed by Opera 9.62, but according to security researcher Aviv Raff, some bugs slipped by – queue in Opera 9.63 and its Opera Presto 2.1.1 engine. A total of 7 issues have been solved with the recent Opera 9.63 update:
- The extremely severe vulnerability that caused a buffer overflow when certain text-area contents were manipulated. This lead to arbitrary code execution on the targeted machine.
- The extremely severe vulnerability that caused an unexpected DOM change when handling certain HTML constructs. This lead to the browser crashing.
- The highly severe vulnerability that caused a buffer overflow when handling very long URLs. This lead to arbitrary code execution on the targeted machine.
- The highly severe vulnerability that allowed an attacker to subscribe the user to malicious feeds and also view the feeds the users is subscribed to. This problem occurred because Opera until now did not correctly block scripted URLs when previewing news feeds.
- The highly severe vulnerability that caused the built-in XSLT templates to handle escaped content in an incorrect manner and consequently treat it as markup. This could allow an attacker to inject scripted markup which would be executed in the web page’s security context.
- Random data no longer can be revealed.
- Java and plug-in content can no longer be executed by means of <img> tags in embedded SVG images.
The bottom line is this: if you want to stay protected (as you may have noticed most of the vulnerabilities are rated highly critical and extremely critical) it is vital that you upgrade your Opera browser.
Don't forget to:
RSSTags: Opera, Opera 9.63
Link to this article:
Add comment:
Software News
Fun Friday Feature: Cry Translator iPhone App
I remember that some obscure school teacher once told me that speech separates man from beast. Now I always found that reasoning to be somewhat flawed. What about parrots? They can speak – sort of. Or...
I remember that some obscure school teacher once told me that speech separates man from beast. Now I always found that reasoning to be somewhat flawed. What about parrots? They can speak – sort of. Or...
06 Nov 2009
Chrome 3.0 and 4.0 Updated on the Stable and Dev Channel
The guys over at Google are keeping as busy, of not more so, as the guys over at Mozilla. While the Mozilla Foundation has recently released Firefox 3.6 Beta 1 and Firefox 3.5.5, Mountain View-based search engine giant Google ...
The guys over at Google are keeping as busy, of not more so, as the guys over at Mozilla. While the Mozilla Foundation has recently released Firefox 3.6 Beta 1 and Firefox 3.5.5, Mountain View-based search engine giant Google ...
06 Nov 2009
November 09 Patch Tuesday: 6 Security Bulletins, 15 Vulnerabilities
Next week’s first two days are already booked. On Monday, the 9th of November, we will be celebrating Firefox’s 5th anniversary. On Tuesday, we will focus on something less entertaining, mainly patching our...
Next week’s first two days are already booked. On Monday, the 9th of November, we will be celebrating Firefox’s 5th anniversary. On Tuesday, we will focus on something less entertaining, mainly patching our...
06 Nov 2009
Firefox 3.5.5 Update Released
The Mozilla Foundation has released another update for its browser, mainly Firefox 3.5.5. The update follows in the footsteps of Firefox 3.5.4, an update that was released about a week back...
The Mozilla Foundation has released another update for its browser, mainly Firefox 3.5.5. The update follows in the footsteps of Firefox 3.5.4, an update that was released about a week back...
06 Nov 2009
iTunes 9.0.2 Update Loves Apple TV 3.0 Software, Breaks Palm Pre Syncing (Again)
Cupertino-based software developer Apple has recently updated its digital media player iTunes to version 9.0.2. The update, which follows in the footsteps of iTunes 9.0.1 and iTunes 9.0, brings forth one significant new change...
Cupertino-based software developer Apple has recently updated its digital media player iTunes to version 9.0.2. The update, which follows in the footsteps of iTunes 9.0.1 and iTunes 9.0, brings forth one significant new change...
05 Nov 2009
Blacksn0w: Unlock Tool for the iPhone 3G and 3GS
Great news for iPhone 3G and iPhone 3GS users that updated the device to baseband version 05.11; or iPhone 3G and iPhone 3GS users that bought the device with an updated baseband. Original iPhone hacker...
Great news for iPhone 3G and iPhone 3GS users that updated the device to baseband version 05.11; or iPhone 3G and iPhone 3GS users that bought the device with an updated baseband. Original iPhone hacker...
05 Nov 2009
Recommended Tools
Registry Booster 2009
Clean, Repair and Optimize your PC with the #1 industry leading and award-winning utility
Clean, Repair and Optimize your PC with the #1 industry leading and award-winning utility
Driver Scanner 2009
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
Fast and easy, it boosts performance by scanning for, downloading & installing driver updates
SpeedUpMyPC 2009
How fast is your PC really running? Turbo-charge your Internet and PC performance here
How fast is your PC really running? Turbo-charge your Internet and PC performance here
Nero Burning ROM
LimeWire Basic
Yahoo! Messenger
Winamp
Mozilla Firefox
eMule
BitComet
iTunes
Google Earth
uTorrent