Vulnerability intelligence vendor Secunia warns that a highly critical remotely exploitable vulnerability has been identified in the recently released Opera 10.52. The browser developer has patched the potential arbitrary code execution flaw in Opera 10.53.
The issue was identified by a programmer named Mathias Karlsson, who was investigating a stack exhaustion bug in WebKit, the popular rendering engine used by Safari, Chrome and other browsers. "The script simply fills the DOM document with <marquee> tags and within seconds, causes both Safari and Opera to crash. […] Opera does not run WebKit but it turned out that the exploit made it crash for other reasons," the researcher writes
on his blog, where an exploit is also available.