Quick Jump Daily Digest
Thank you for your interest in the Quick Jump Daily Digest. Get notified of all new content on QJ in our free Daily Digest. To subscribe, enter your email address below and click the subscribe button.
Bug in the armor: Opera has vulnerable code |
Listed in: Wii Tags: Exploit, JavaScript, malware, Opera Software
Ó
We don't know how this affects the Wii, but... This ain't the kind of exploit that makes the homebrewers smile. This is the one that pisses everybody off. iDefense Labs reports that there's a bug in Opera's implementation of JavaScript that can potentially allow someone "to execute arbitrary code on the affected host". Last time this writer heard this phrase, he had to dump a ton of useless popup exes and malware code out of his PC HDD; hence, the piss everyone off comment. It ain't a pretty sight, you know. Exploitation of this vulnerability would allow an attacker to execute arbitrary code on the affected host. The attacker would first need to construct a website containing the malicious JavaScript and trick the vulnerable user into visiting the site. This would trigger the vulnerability and allow the code to execute with the privileges of the local user.
Like we said: we don't know how this affects the Wii. The iDefense Labs report doesn't contain anything Wii-specific, so absent the guy in this room with the IT degree, we don't know the dynamics of this exploit in the white box (With Wii Opera, you'd expect iDefense Labs to start gathering intel on vulnerabilities as they affect the Wii...). Anyway, the latest Opera for PC platforms corrects this bug. With the Opera on Wiis right now a running beta, it's a good bet this flaw will be patched up in a final release as well.
| 100% of voters think this story ROCKS! |
|
|
Comments
Lets hope they provide a patch soon.
Reply
And this does not affect the Wii one bit as far as viruses go. Why? Because there are NO viruses written for the Wii. Until modders hack this to advantage, nobody will know HOW to write a virus for the Wii.
No, this is all plus and no minus for the Wii. For PCs, it's 'yet another hole' and that's it. Opera will patch it and avert the end of the world, again. -yawn-
Reply
first off this is why the javascript in the wii browser is built differently form the ground up with some things removed. if this hole is still present, its not a threat to wii.
Why? the arbitrary code has to be native to the processor. Is anyone able to compile a Wii program yet who isnt an official developer? no... nevermind one as complex as running within another process?
Reply
well they can make the Wii crash from this bug so lets hope they can get some kind of code working from it
Reply
Reply