October 30, 2008

Opera Software fixes flaw with browser version 9.62

Opera Software on Thursday announced the release of Opera 9.62 which patched a major security flaw in the “history search” page.

“We encourage users to update as quickly as possible,” Opera spokesman Thomas Ford told SCMagazineUS.com Tuesday.

The patch comes just days after security researchers Aviv Raff, Roberto Suggi and Stefano Di Paola reported that the browsers "history search" page did not validate user input and left users open to a remote code execution exploit.
 
An attacker would have been able to create a specially crafted page that would automatically open the history search page and exploit the vulnerability, Raff said. If a victim visited this web page, a trojan would be silently downloaded and installed on the victim's machine.

Opera just released version 9.61 last week, which patched a similar problem on the same local resource — the history search page — that allowed an attacker to view a user's history.

Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial CISPA

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help in ID'ing alleged hackers

Judge rules hospital can ask ISP for help ...

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.