2008-02-29 02:00:00
mitre
PUBLISHED
Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties.