Opera JPEG Processing Integer Overflow Vulnerability
Secunia Advisory: SA20787 Print Advisory
Release Date: 2006-06-23
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
Software: Opera 8.x
VigilantMinds has reported a vulnerability in Opera browser, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an integer overflow when processing JPEG images. This can be exploited to cause a buffer overflow via a specially crafted JPEG image.
Successful exploitation allows execution of arbitrary code.
The vulnerability has been reported in version 8.54. Prior versions may also be affected.
Solution: Upgrade to version 9.0.
Provided and/or discovered by: Chris Ries, VigilantMinds.
Original Advisory: VigilantMinds: http://www.vigilantminds.com/advi_detail.php?id=45