Two vulnerabilities have been reported in Opera by iDefense, which can be exploited by malicious people to compromise a user's system.
1) An unspecified error when processing JPEG files can be exploited to cause a heap-based buffer overflow via a JPEG file with a specially crafted DHT marker.
2) An error within createSVGTransformFromMatrix() can be exploited by passing an incorrect object to the said function.
Successful exploitation of the vulnerabilities allow execution of arbitrary code.
It is advised for all Opera users to upgrade to v9.10
No comments:
Post a Comment