Opera Software Wednesday issued a security update fixing a security flaw in the Opera Web browser attackers could exploit to run malicious code on targeted machines. According to the security update advisory, Opera is prone to an arbitrary code execution vulnerability that surfaces when Opera is configured to use an external news reader or email client. Specially crafted Web pages can cause these external applications to run incorrectly in conjunction with Opera, the vendor said.
"If a user has configured Opera to use an external newsgroup client or email application, specially crafted Web pages can cause Opera to run that application incorrectly," the advisory said. "In some cases this can lead to execution of arbitrary code."
Opera Software has fixed the problem with the release of Opera 9.24, which can be downloaded from the vendor's Web site.