ID CVE-2015-8833
Summary Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbitrary code via vectors related to the "Authenticate buddy" menu item.
References
Vulnerable Configurations
  • cpe:2.3:a:otr:pidgin-otr:4.0.1
    cpe:2.3:a:otr:pidgin-otr:4.0.1
CVSS
Base: 10.0 (as of 13-04-2016 - 13:09)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2016-397.NASL
    description This update to pidgin-otr 4.0.2 fixes the following issue : - CVE-2015-8833: use-after-free issue during SMP (boo#970498) It also contains new and updated translations.
    last seen 2019-02-21
    modified 2016-10-13
    plugin id 90172
    published 2016-03-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=90172
    title openSUSE Security Update : pidgin-otr (openSUSE-2016-397)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-3528.NASL
    description Stefan Sperling discovered that pidgin-otr, a Pidgin plugin implementing Off-The-Record messaging, contained a use-after-free bug. This could be used by a malicious remote user to intentionally crash the application, thus causing a denial-of-service.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 90126
    published 2016-03-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=90126
    title Debian DSA-3528-1 : pidgin-otr - security update
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_77E0B631E6CF11E585BE14DAE9D210B8.NASL
    description Hanno Bock reports : The pidgin-otr plugin version 4.0.2 fixes a heap use after free error. The bug is triggered when a user tries to authenticate a buddy and happens in the function create_smp_dialog.
    last seen 2019-02-21
    modified 2018-12-19
    plugin id 89853
    published 2016-03-11
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=89853
    title FreeBSD : pidgin-otr -- use after free (77e0b631-e6cf-11e5-85be-14dae9d210b8)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201701-10.NASL
    description The remote host is affected by the vulnerability described in GLSA-201701-10 (libotr, Pidgin OTR: Remote execution of arbitrary code) Multiple vulnerabilities exist in both libotr and Pidgin OTR. Please review the CVE identifiers for more information. Impact : A remote attacker could send a specially crafted message, possibly resulting in the execution of arbitrary code with the privileges of the process, or cause a Denial of Service condition. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2017-01-03
    plugin id 96241
    published 2017-01-03
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=96241
    title GLSA-201701-10 : libotr, Pidgin OTR: Remote execution of arbitrary code
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2016-0912-1.NASL
    description This update for pidgin-otr fixes the following issues : - CVE-2015-8833: A heap based use-after-free issue was fixed in pidgin-otr that could lead to crashes or potential code execution. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-29
    plugin id 90304
    published 2016-04-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=90304
    title SUSE SLED12 Security Update : pidgin-otr (SUSE-SU-2016:0912-1)
refmap via4
bid 84295
confirm
debian DSA-3528
gentoo GLSA-201701-10
misc https://blog.fuzzing-project.org/39-Heap-use-after-free-in-Pidgin-OTR-plugin-CVE-2015-8833.html
mlist
  • [OTR-users] 20160309 New releases of libotr (4.1.1) and pidgin-otr (4.0.2) available
  • [oss-security] 20160309 Heap use after free in Pidgin-OTR plugin
  • [oss-security] 20160309 Re: Heap use after free in Pidgin-OTR plugin
suse
  • SUSE-SU-2016:0912
  • openSUSE-SU-2016:0878
Last major update 02-12-2016 - 22:14
Published 11-04-2016 - 21:59
Last modified 30-06-2017 - 21:29
Back to Top