Format string vulnerability in the log_message_cb function in otr-plugin.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 3.2.1 for Pidgin might allow remote attackers to execute arbitrary code via format string specifiers in data that generates a log message.

pidgin-otr was prone to a format string flaw in log_message_cb

A format string flaw in pidgin-otr could have caused a denial of service condition or even potentially allowed attackers to execute arbitrary code. This has been fixed.

The remote host is affected by the vulnerability described in GLSA-201207-05 (pidgin-otr: Arbitrary code execution)

    A format string vulnerability has been found in the 'log_message_cb()'       function in otr-plugin.c.
  Impact :

    A remote attacker could possibly execute arbitrary code with the       privileges of the process or cause a Denial of Service condition.
  Workaround :

    There is no known workaround at this time.

intrigeri discovered a format string error in pidgin-otr, an Off-the-Record Messaging plugin for Pidgin.

This could be exploited by a remote attacker to cause arbitrary code to be executed on the user's machine.

The problem is only in pidgin-otr. Other applications which use libotr are not affected.

The version of Pidgin OTR (Off-the-Record) installed on the remote Windows host is prior to 3.2.1 and is, therefore, affected by a format string vulnerability that could allow a remote attacker to execute arbitrary code on the affected host.

The authors report :

Versions 3.2.0 and earlier of the pidgin-otr plugin contain a format string security flaw. This flaw could potentially be exploited by a remote attacker to cause arbitrary code to be executed on the user's machine.

The flaw is in pidgin-otr, not in libotr. Other applications that use libotr are not affected.

ID	Name	Product	Family	Severity
74646	openSUSE Security Update : pidgin-otr (openSUSE-SU-2012:0717-1)	Nessus	SuSE Local Security Checks	high
64212	SuSE 11.1 Security Update : pidgin-otr (SAT Patch Number 6380)	Nessus	SuSE Local Security Checks	high
59897	GLSA-201207-05 : pidgin-otr: Arbitrary code execution	Nessus	Gentoo Local Security Checks	high
59215	Debian DSA-2476-1 : pidgin-otr - format string vulnerability	Nessus	Debian Local Security Checks	high
59195	Pidgin OTR < 3.2.1 Format String	Nessus	Windows	high
59168	FreeBSD : pidgin-otr -- format string vulnerability (aa71daaa-9f8c-11e1-bd0a-0082a0c18826)	Nessus	FreeBSD Local Security Checks	high

Detections

Analytics

CVE-2012-2369

critical

Tenable Plugins

high

high

high

high

high

high