Opera Web Browser Framework framework Memory Corruption Vulnerability

Release date:
Updated on:

Affected Systems:

Opera Software Opera Web Browser 9.x
Opera Software Opera Web Browser 8.x
Opera Software Opera Web Browser 7.x
Opera Software Opera Web Browser 6.x
Opera Software Opera Web Browser 5.x
Opera Software Opera Web Browser 11.x
Opera Software Opera Web Browser 10.x
Unaffected system:
Opera Software Opera Web Browser 11.11
Description:
--------------------------------------------------------------------------------

Opera Web Browser is a Web Browser and Internet Software package developed by Opera Software.

The Opera Web Browser has a memory corruption vulnerability in processing certain framework set structures. Remote attackers can exploit this vulnerability to execute arbitrary code in the affected system or cause a denial of service.

This vulnerability is caused by an error in processing the framework set structure during page uninstallation. You can use a specially crafted webpage to cause memory damage.

<* Link: http://www.opera.com/support/kb/view/992/
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Opera Software
---
Opera Software has released a Security Bulletin (992) and corresponding patches for this:

992: Frameset issue allows execution of arbitrary code

Link: http://www.opera.com/support/kb/view/992/