Opera is working on a patch for a critical vulnerability in its Windows desktop browser.
According to Computerworld, attacker can exploit the bug, which affects Opera 10, to corrupt memory, crash Opera and theoretically execute attack code. However, Opera spokesman Thomas Ford downplays the threat:
There are so many dependencies in data used in an application like Opera that getting valid data into every location that needs it is rather unlikely, and a crash soon after the corruption is the most likely scenario, unless the final phase of the attack can be carried through very quickly, something which depends on a large number of variables.
Opera did not set a timeline for fixing the bug, only saying it would be released "as soon as possible."