The latest variant of the popular web browser, Opera 11.60, comes with three major security fixes and a couple of improvements that patch weaknesses which could have been taken advantage of by a hacker.
A moderately severe vulnerability that could allow pages to set cookies or communicate cross-site for some top level domains was fixed after being reported by Opera customers.
Thai Duong and Juliano Rizzo from Netifera reported a weakness in the SSL v3.0 and TLS 1.0 which could allow eavesdropping attacks against certain applications. Even though Opera experts believed that the attacks couldn’t have been possible, they changed a protocol just to be sure.
Besides improving the handling of certificate revocation corner cases, they also resolved an issue that allowed leakage of cross-domain information due to a JavaScript “in” operator.
Opera for Windows is available for download here.
Opera for Mac is available for download here.
Opera for Linux is available for download here.
Find us on Google+
No user comments yet.
Be the first to express your opinion!
