Description
Use-after-free vulnerability was found in Off-the-Record Messaging (OTR) pidgin-otr plugin. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via vectors related to the “Authenticate buddy” menu item.
Technical details
This vulnerability is in the create_smp_dialog function in gtk-dialog.c and related to the “Authenticate buddy” menu item.
Original advisories
Related products
CVE list
- CVE-2015-8833 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!