Page 3 of 4 FirstFirst 1234 LastLast
Results 21 to 30 of 35

Thread: Opera updates

  1. #21
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera exploits publicly available

    FYI...

    Opera exploits publicly available...
    - http://isc.sans.org/diary.html?storyid=8356
    Last Updated: 2010-03-05 16:03:04 UTC - "Several mailing lists and readers... are reporting publicly available exploits for Opera 10.50 for Windows and below. There actually seems to be at least two different vulnerabilities, both unpatched at this time. One of them seems to be a DoS resulting in a browser crash, but the other looks like it will allow full code execution. The vulnerability finders seem to indicate that these issues are known to exist in previous versions of the Opera also. These are fairly serious and until Opera patches them, you may be well advised to stop using them for the time being."

    http://secunia.com/advisories/38820/

    http://www.vupen.com/english/advisories/2010/0529

    UPDATE: http://secunia.com/advisories/38820/
    Comment at bottom of secunia URL...
    On its forums, Opera is claiming that the vulnerability is not exploitable and that the report is invalid...
    - http://my.opera.com/community/forums....dml?id=442431
    "... haavard - Moderator:
    Friday, 5. March 2010, 17:41:26 (edited)
    ... This doesn't seem to be exploitable after being looked into. It might crash, but is there a proof of concept which executes code?"

    - http://www.theregister.co.uk/2010/03...vulnerability/
    5 March 2010 - "A security vulnerability identified in Opera can be exploited to crash users' browsers, but probably can't lead to the remote execution of malware... "We believe that the bug primarily causes a crash, and that exploiting the vulnerability to execute code is extremely difficult, if not impossible," spokesman Thomas Ford told The Register. He went on to say that users should be sure to enable a security feature known as DEP, or data execution prevention. "In our testing, DEP mitigates the problem and should protect the system," he said... DEP isn't always turned on by default... Opera is in the process of pushing out an update that patches the bug."

    Last edited by AplusWebMaster; 2010-03-06 at 02:46.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  2. #22
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.51 released

    FYI...

    Opera v10.51 released
    - http://www.opera.com/browser/downloa...=10.51&local=y
    March 22, 2010

    Opera 10.51 for Windows changelog
    Release notes
    - http://www.opera.com/docs/changelogs/windows/1051/
    Release date: March 22, 2010
    "Opera 10.51 is a recommended security and stability upgrade. Opera highly recommends all users to upgrade to Opera 10.51 to take advantage of these improvements..."

    - http://secunia.com/advisories/38820/
    Last Update: 2010-03-22
    Criticality level: Highly critical
    Impact: Exposure of sensitive information, System access
    Where: From remote
    Solution: Update to version 10.51...

    - http://web.nvd.nist.gov/view/vuln/de...=CVE-2010-1349
    Last revised: 04/13/2010
    CVSS v2 Base Score: 10.0 (HIGH)

    Last edited by AplusWebMaster; 2010-04-20 at 02:19.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  3. #23
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Arrow Opera v10.52 released

    FYI...

    Opera v10.52 released
    - http://www.opera.com/browser/download/
    April 27, 2010

    - http://www.opera.com/docs/changelogs/windows/1052/
    "Opera 10.52 is a recommended stability upgrade. Opera highly recommends all users to upgrade to this version to take advantage of these improvements..."
    (Many fixes listed 'since Opera 10.51')

    - http://www.opera.com/docs/history/#down

    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  4. #24
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.53 released

    FYI...

    Opera v10.53 released
    - http://www.opera.com/docs/changelogs/windows/1053/
    April 30, 2010 - Opera 10.53 is a recommended security and stability upgrade...
    Changes since Opera 10.52
    * Fixed an issue where multiple asynchronous document modifications could be used to execute arbitrary code; see our advisory ( http://www.opera.com/support/search/view/953/ )...

    - http://www.opera.com/docs/changelogs/windows/1000/
    "... Opera now includes the ability to update itself automatically when new releases become available. By default, Opera will notify the user about available updates. Users can specify..."

    - http://secunia.com/advisories/39590/
    Solution: Update to version 10.53...

    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  5. #25
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.54 released

    FYI...

    Opera v10.54 released
    - http://secunia.com/advisories/40250/
    Release Date: 2010-06-21
    Criticality level: Highly critical
    Impact: Unknown
    Where: From remote
    Solution: Update to version 10.54.
    Original Advisory:
    http://www.opera.com/docs/changelogs/windows/1054/
    http://www.opera.com/support/kb/view/954/

    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  6. #26
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.60 released

    FYI...

    Opera v10.60 released
    - http://secunia.com/advisories/40375/
    Release Date: 2010-07-01
    Criticality level: Moderately critical
    Impact: Exposure of system information, Exposure of sensitive information, System access
    Where: From remote
    ... The security issues are reported in versions prior to 10.60.
    Solution: Update to version 10.60.
    Original Advisory: Opera:
    http://www.opera.com/docs/changelogs/windows/1060/
    http://www.opera.com/support/kb/view/957/
    http://www.opera.com/support/kb/view/958/

    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2657
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2658
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2659
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2660
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2661
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2662
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2663
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2664
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2665
    - http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2666

    - http://www.opera.com/docs/changelogs/windows/1000/
    "... Opera now includes the ability to update itself automatically when new releases become available. By default, Opera will notify the user about available updates..."

    Last edited by AplusWebMaster; 2010-07-12 at 19:46.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  7. #27
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.61 released

    FYI...

    Opera v10.61 released
    - http://secunia.com/advisories/40120/
    Release Date: 2010-08-12
    Criticality level: Highly critical
    Impact: Security Bypass, System access
    Where: From remote
    Solution: Update to version 10.61.
    Opera:
    http://www.opera.com/docs/changelogs/windows/1061/
    http://www.opera.com/support/kb/view/966/
    http://www.opera.com/support/kb/view/967/
    http://www.opera.com/support/kb/view/968/

    - http://web.nvd.nist.gov/view/vuln/de...=CVE-2010-3019
    Last revised: 08/17/2010 - "... Opera before 10.61..."
    CVSS v2 Base Score: 9.3 (HIGH)

    Last edited by AplusWebMaster; 2010-08-24 at 15:43.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  8. #28
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.62 released

    FYI...

    Opera v10.62 released
    - http://www.opera.com/browser/download/
    September 9, 2010

    - http://www.opera.com/docs/changelogs/windows/1062/
    "Opera 10.62 is a recommended upgrade offering security and stability enhancements..."

    Advisory: Malicious DLL files can be unintentionally loaded and allowed to run arbitrary code
    - http://www.opera.com/support/kb/view/970/
    Severity: High ...

    - http://secunia.com/advisories/41083/
    Last Update: 2010-09-09
    Criticality level: Highly critical
    Impact: System access
    Where: From remote
    Solution: Update to version 10.62.

    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  9. #29
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v10.63 released

    FYI...

    Opera v10.63 released
    - http://secunia.com/advisories/41740/
    Release Date: 2010-10-12
    Criticality level: Highly critical
    Impact: Security Bypass, Cross Site Scripting, Spoofing
    Where: From remote
    Solution: Update to version 10.63...
    Original Advisory: Opera:
    http://www.opera.com/docs/changelogs/windows/1063/
    http://www.opera.com/support/kb/view/971/
    http://www.opera.com/support/kb/view/972/
    http://www.opera.com/support/kb/view/973/
    http://www.opera.com/support/kb/view/974/
    http://www.opera.com/support/kb/view/976/

    - http://www.securitytracker.com/id?1024570
    Oct 13 2010

    Last edited by AplusWebMaster; 2010-10-13 at 12:47.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

  10. #30
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Exclamation Opera v11.00 released

    FYI...

    Opera v11.00 released
    - http://www.opera.com/browser/download/
    Dec 16 2010

    Changelog
    - http://www.opera.com/docs/changelogs/windows/1100/
    "Opera 11.00 is a recommended upgrade offering new and improved features, plus security and stability enhancements...
    Security - Fixed:
    • Fixed an issue where Web page content could display misleading security information; see our advisory:
    - http://www.opera.com/support/search/view/977/
    • Fixed an issue which could allow leaking of WAP form content to other sites; see our advisory:
    - http://www.opera.com/support/search/view/979/
    • Fixed a high severity issue; details will be disclosed at a later date.
    • Fixed further high severity issues; details will be disclosed at a later date..."

    - http://secunia.com/advisories/42653/
    Release Date: 2010-12-16
    Criticality level: Moderately critical
    Impact: Unknown, Manipulation of data, Exposure of sensitive information
    Where: From remote...
    Solution: Upgrade to version 11.00.
    Original Advisory: Opera:
    http://www.opera.com/docs/changelogs/unix/1100/
    http://www.opera.com/support/kb/view/977/
    http://www.opera.com/support/kb/view/979/

    - http://www.securitytracker.com/id?1024909
    Dec 17 2010

    Last edited by AplusWebMaster; 2010-12-20 at 13:12.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •