Opera has released a new version that closes seven vulnerabilities.
Users can exploit the flaws — deemed “highly critical” by Secunia — to launch spoofing and cross-site scripting attacks and ultimately compromise a victim’s machine.
Opera Software, on the support section of its website, graded one of the vulnerabilities “extremely severe,” its highest severity rating.
That flaw involves external applications being able to start Opera when it is registered as a handler for a given protocol, according to an advisory. This could permit an attacker to crash Opera, or worse, inject malicious code.
The next highest bug in severity involves websites displaying misleading information due to an error in the way Opera checks the addresses of framed web pages.
Opera suggests all users upgrade to version 9.52.
The vulnerabilities impact Opera editions 5 to 9, according to Secunia.