Opera
Search the knowledge base
Advisory: A JPEG image with a malformed header can crash Opera
Summary
A JPEG image with a malformed header can crash Opera, and cause arbitrary code to be run.
Severity
Moderate
Problem description
A specially crafted DHT marker in the JPEG file header can cause a heap overflow.
The malformed image alone will only cause a crash. To exploit the flaw, the computer's memory must first be filled up with code of the attacker's choice. This is not trivial to do reliably, so attempted attacks will often cause crashes without succeeding with the exploit.
Opera's response
Opera Software has released Opera version 9.10, where this flaw has been corrected.
Credits
Thanks to iDefense Labs for notifying Opera Software about this vulnerability.
Support
- Overview
- Get started
- Register Opera Mobile
- Knowledge base
- Online communities
- Reporting bugs
- Opera Web Mail
- Access Opera
- Premium support
- Contact support
- Documentation
Opera Help
Need help? Hit F1 anytime while using Opera to access our online help files, or go here.
View mobile site
Copyright © 2009 Opera Software ASA. All rights reserved.