Opera security patch



I saw this earlier today, but had thought it was an issue already covered (just before Thanksgiving there was an opera security update I think.) Anyway… Secunia has an advisory on a security vulnerability in the Opera Web browser. Users are encouraged to upgrade to v. 8.51. The SecurityFix has the story. Download link here http://www.opera.com/download/


This is a critical vulnerability, it has been confirmed in Opera 8.01… basically the flaw is with the way Opera deals with mouse clicks in a new window. A user could be tricked into clicking the open button in a file download box instead of the save or cancel.

From Secunia…

Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to trick users into downloading and executing arbitrary programs on a user’s system.

A design error in the processing of mouse clicks in new browser windows and the predictability of the position of the “File Download” dialog box can be exploited to trick the user into clicking on the “Run” button of the dialog box. This is exploited by first causing a “File Download” dialog box to be displayed underneath a new browser window, and then tricking the user into double-clicking within a specific area in the new window. This will result in an unintended click of the “Open” button in the hidden “File Download” dialog box.

Related Posts

Blog Traffic Exchange Related Posts
  • WMF exploit through indexing software One of the vectors that has been mentioned early on is the infection of a system through the WMF exploit even when the exploited file was downloaded through a dos command shell. At first this seemed absurd, but it appeared that Google Desktop search was indexing files dynamically and once......
  • Lack of working exploit does not mean Windows 98 is safe I want to try to clarify a point. I've spent a couple days trying to get current exploits to work on a Windows 98 SE virtual machine. Not to prove that Windows 98 is safe, but to determine if current exploits affect Windows 98. Yesterday evening there were apocalyptic headlines......
  • Ubuntu 9.04 Jaunty Netbook Remix on an Acer Aspire One ZG5 trackpad issues Recently I had the opportunity to work on an Acer Aspire One netbook. It's rare that I get the chance to work on a linux desktop system for a client. Most of my desktop users that I support run Windows (although I primarily run linux on my machines.) I get......
Blog Traffic Exchange Related Websites
  • Protecting Yourself On The Internet Since its beginning in 1990 the online market place has revolutionised the way the world shares info. Unfortunately, it in addition has opened up a whole new world with bad people doing bad things. Illegal material hasn't been so easily available Big Dog Formula to tempt probably the most innocent......
  • Microsoft to let PC users turn off IE A single check box deep in the guts of the next version of Windows is giving Microsoft Corp. watchers a peek at how the software maker plans to keep European antitrust regulators from marring a crucial software¬†launch. Windows 7, the successor to the much-maligned Vista, isn't expected to reach consumers......
  • The Problems with Working Longer and Retiring Later Some Social Security reformers want to increase the retirement age from age 66, perhaps even to age 70. I don't think this would work for many, if not most American workers. This cost saving strategy is based on the assumption that increasing the retirement age would cause folks to work......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site