Critical Zero-Day Vulnerability Found in Opera 11.51

Hungry Man · Oct 18, 2011

Security expert José A. Vázquez has released details of a critical security hole in the Opera browser that can be exploited to inject malicious code. Vázquez says that he found the hole and notified the developers with a proof of concept a year ago. However, the expert said that Opera decided not to close the hole.

Vázquez thinks that the Opera developers might have tested his version 10.6 exploit with the current version 11.x, which may have caused the exploit to malfunction. Instead of contacting Opera again, Vázquez has adapted the exploit for the current version 11.51 of Opera and has released it as a Metasploit module. This means that, in principle, anyone can now exploit the vulnerability.

The hole is caused by a memory flaw when processing SVG content within framesets. Simply visiting a compromised web page is enough for a system to become infected with malicious code. Vazquez said that the exploit is successful in 3 out of 10 cases. With the pre-alpha version of Opera 12, the exploit managed to inject malicious code in 6 out of 10 cases.

By releasing the exploit, the security expert is forcing the browser developers into action. Opera will now have to respond in order to avoid exposing browser users to a virus threat for longer than is absolutely necessary. On their security blog, the Opera developers have so far not responded to the issue.'
Click to expand...

http://www.h-online.com/security/ne...hole-in-current-version-of-Opera-1362504.html

Hungry Man · Oct 18, 2011

From Mack_Guy:

An interesting link:
http://secunia.com/advisories/product/33328/?task=statistics_2011
20% of Opera's exploits go unpatched

60% of those are rated "High" and 40% are "Moderate"

prius04 · Oct 18, 2011

Funny how a Chrome icon magically appeared on my Taskbar immediately to the right of an existing Opera icon shortly after reading this thread.

Hungry Man · Oct 18, 2011

Honestly, at the very least I thought Opera patched their browser. 20% of the known vulnerabilities go unpatched... that's not very good. Even Firefox does better than that.

m00nbl00d · Oct 18, 2011

Maybe their market share makes them not rush patches... You know, just in case patches break something...

Hungry Man · Oct 18, 2011

lol who knows what their reasoning is

All I know is this is further evidence of what I've been saying for a while.

MrBrian · Oct 18, 2011

Maybe I should have mentioned "critical" in the title of this thread.

Hungry Man · Oct 19, 2011

Always spices things up haha

wrongway67 · Oct 19, 2011

Hungry Man said:

An interesting link:
http://secunia.com/advisories/product/33328/?task=statistics_2011
20% of Opera's exploits go unpatched

60% of those are rated "High" and 40% are "Moderate"
Click to expand...

Unpatched 20% (1 of 5 Secunia advisories)
Click to expand...

only the last one, the "SVG Content Processing Code Execution Vulnerability" is unpatched: http://secunia.com/advisories/product/33328/?task=advisories_2011

Hungry Man · Oct 19, 2011

I'm getting my info from this:
http://secunia.com/advisories/graph/?type=sol&period=2011&prod=33328

and

http://secunia.com/advisories/graph/?type=cri&period=2011&prod=33328

vasa1 · Oct 19, 2011

MrBrian said:

Maybe I should have mentioned "critical" in the title of this thread.
Click to expand...

You need to work on your marketing skills

Then we wouldn't have an essentially duplicate thread!

Fox Mulder · Oct 19, 2011

I think the Opera devs have been dropping the ball for years now...

rrrh1 · Oct 19, 2011

Opera has a new development team that wants to only add new features and not fix existing bugs. Several years ago they had a very secure and safe browser but now they have several things that are broken or insecure.

They have added:

Opera Turbo
Opera Unite
Opera Link
Opera Widgets
Opera Add-ons

and probably some I missed...how safe are the new additions?

I like Opera in ways but with every update more things are broken.

rrrh1 (arch1)

Fox Mulder · Oct 19, 2011

Yeah, I remember in 2006-2007 I found Opera to be a very respectable candidate for a browser, but it's gone downhill in recent years.

prius04 · Oct 19, 2011

Well, at least they fixed it promptly (but after all of the hoopla) and the following is Opera's version of what exactly occurred.

http://my.opera.com/securitygroup/b...ulation-vulnerability-that-was-fixed-in-11-52

Fox Mulder · Oct 22, 2011

prius04 said:

Well, at least they fixed it promptly (but after all of the hoopla) and the following is Opera's version of what exactly occurred.

http://my.opera.com/securitygroup/b...ulation-vulnerability-that-was-fixed-in-11-52
Click to expand...

The Opera devs are pretty ~ Snipped as per TOS ~ if they're going to try to pin the blame on the guy who tried to help them out.

Log in or Sign up

Critical Zero-Day Vulnerability Found in Opera 11.51

Hungry Man Registered Member

Hungry Man Registered Member

prius04 Registered Member

Hungry Man Registered Member

m00nbl00d Registered Member

Hungry Man Registered Member

MrBrian Registered Member

Hungry Man Registered Member

wrongway67 Registered Member

Hungry Man Registered Member

vasa1 Registered Member

Fox Mulder Registered Member

rrrh1 Registered Member

Fox Mulder Registered Member

prius04 Registered Member

Fox Mulder Registered Member

Log in or Sign up

Critical Zero-Day Vulnerability Found in Opera 11.51

Hungry Man Registered Member

Hungry Man Registered Member

prius04 Registered Member

Hungry Man Registered Member

m00nbl00d Registered Member

Hungry Man Registered Member

MrBrian Registered Member

Hungry Man Registered Member

wrongway67 Registered Member

Hungry Man Registered Member

vasa1 Registered Member

Fox Mulder Registered Member

rrrh1 Registered Member

Fox Mulder Registered Member

prius04 Registered Member

Fox Mulder Registered Member

Useful Searches