Specially crafted addresses can execute arbitrary code – Opera Security Advisories


Extremely Severe

Problem Description

If a malicious page redirects Opera to a specially crafted address (URL), it can cause Opera to crash. Given sufficient address content, the crash could cause execution of code controlled by the attacking page.

Opera’s Response

Opera Software has released Opera 9.60, where this issue has been fixed.


Thanks to Chris of Matasano Security for reporting this issue to Opera Software.