HTML parsing flaw can cause Opera to execute arbitrary code – Opera Security Advisories


Extremely Severe

Problem Description

Certain HTML constructs can cause the resulting DOM to change unexpectedly, which triggers a crash. To inject code, additional techniques will have to be employed.

Opera’s Response

Opera Software has released Opera 9.63, where this issue has been fixed.


Thanks to Alexios Fakos for reporting this issue to Opera Software.