Security update repairs flaw in Opera browser

Home
Topics
Data and Application Security Management
Web Application Security
Security update repairs flaw in Opera browser

Article

Security update repairs flaw in Opera browser

SearchSecurity.com Staff

Opera Software Wednesday issued a security update fixing a security flaw in the Opera Web browser attackers could exploit to run malicious code on targeted machines. According to the security update advisory, Opera is prone to an arbitrary code execution vulnerability that surfaces when Opera is configured to use an external news reader or email client. Specially crafted Web pages can cause these external applications to run incorrectly in conjunction with Opera, the vendor said.

"If a user has configured Opera to use an external newsgroup client or email application, specially crafted Web pages can cause Opera to run that application incorrectly," the advisory said. "In some cases this can lead to execution of arbitrary code."

Opera Software has fixed the problem with the release of Opera 9.24, which can be downloaded from the vendor's Web site.

Requires Free Membership to View

Login

SearchSecurity.co.UK members gain immediate and unlimited access to breaking UK industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.co.UK today!

Michael S. Mimoso, Editorial Director

By submitting your registration information to SearchSecurity.co.uk you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.co.uk is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Related Topics: Web Application Security, VIEW ALL TOPICS

Dig Deeper

People who read this also read...

Related glossary terms

Terms for Whatis.com - the technology online dictionary

Show me more

More from Related TechTarget Sites

Networking UK
Virtual Data Centre
Data Management UK
Security
Cloud Security
Security IN

Networking UK
- Cisco Live London: 40 and 100 GbE, souped up WLAN
  
  At Cisco Live London, Cisco launched 40 and 100 GbE switching, a souped-up 4-antenna WLAN access point, and a host of network virtualisation technologies.
- UK Networkers should gear up for mobility implementations in 2012
  
  Companies are rethinking legacy tools to take advantage of what users get from having access to data and applications across all kinds of devices, according to TechTarget’s 2012 IT Priorities Survey.
- Cloud gets vote of confidence from UK buyers in 2012 IT priorities
  
  The cloud is set to be a key investment area for UK buyers in 2012 with 30.5% of IT buyers pledging to spend on the technology, according to TechTarget’s 2012 IT Priorities Survey.
Virtual Data Centre
- VMware vSphere 5 storage features: Part two
  
  VMware vSphere 5 storage features include Storage DRS, VSA and data store clusters. IT pros can learn what these features bring to their infrastructure and how best to use them.
- VMware updates vFabric Suite for cloud automation: News roundup
  
  VMware ‘s launch of vFabric Suite 5.1 for cloud automation, Equinix’s acquisition of a colo service provider and UK SMEs’ cloud adoption are this week’s highlights.
- SEPA reaps cost savings running Oracle on VMware
  
  SEPA’s IT team was warned of the complexities of virtualising Oracle database and apps. But strategic design and testing helped it run Oracle on VMware vSphere and reap benefits.
DataManagement UK
- NEC Europe has yen for Host Analytics’ financial planning
  
  NEC Europe has signed up to use Host Analytics' cloud-based financial planning service to better integrate an acquisition and support its growth plans.
- Podcast: How to craft an effective MDM strategy
  
  In this podcast interview, Andy Hayler gives advice on how to create and implement an MDM strategy that is ruthlessly focused on business value.
- Jill Dyché: CEO big data focus good news and bad news for IT
  
  Jill Dyché, a data management expert, sees CEO interest and scepticism as both an opportunity and a threat. Avoid the big data 'gotchas', and don't mistake data warehousing for big data.
Security
- Intrusion detection and prevention: IDS/IPS security guide
  
  This guide is a compilation of SearchSecurity.com's best resources on intrusion detection and prevention. It covers not only the basics of what they are and how they work, but also discusses several other important areas of IDS and IPS security, including IDS/IPS tools, such as Snort, implementation and deployment and wireless intrusion prevention systems (WIPS).
- Praise, criticism for retiring cybersecurity coordinator Howard Schmidt
  
  Security experts say some issues haven’t been adequately addressed by the White House security chief.
- PCI Council urges P2P encryption for mobile payments
  
  A PCI Council guidance document requires merchants to use a validated PIN entry device or secure card reader to accept payments using mobile devices.
Cloud Security
- Leveraging Microsoft Azure security features for PaaS security
  
  Organizations can boost PaaS security late in the game by implementing these stopgap measures.
- Quiz: Understanding cloud-specific security technologies
  
  Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.
- CSA launches cloud security certification initiative for service providers
  
  Plan calls for working with certification bodies, government agencies, as well as an independent CSA certification.
Information Security
- Information security budgets: Five steps to obtain management buy-in
  
  Getting management to approve security budgets is difficult. Here are guidelines to help you prepare and present information security budgets effectively.
- Maltego tutorial - Part 1: Information gathering
  
  Maltego is a powerful OSINT information gathering tool. Our Maltego tutorial teaches you how to use Maltego for personal reconnaissance of a target.
- POS terminal security: Best practices for point of sale environments
  
  Securing point of sale (POS) environments can be tricky. Shobitha Hariharan and Nitin Bhatnagar share comprehensive POS terminal security best practices.

All Rights Reserved, Copyright 2008 - 2012, TechTarget