2014-02-06 22:00:00
jpcert
PUBLISHED
The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.