4.3
CVE-2012-3461
- EPSS 3.44%
- Veröffentlicht 20.08.2012 19:55:05
- Zuletzt bearbeitet 16.06.2026 23:43:16
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The (1) otrl_base64_otr_decode function in src/b64.c; (2) otrl_proto_data_read_flags and (3) otrl_proto_accept_data functions in src/proto.c; and (4) decode function in toolkit/parse.c in libotr before 3.2.1 allocates a zero-length buffer when decoding a base64 string, which allows remote attackers to cause a denial of service (application crash) via a message with the value "?OTR:===.", which triggers a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cypherpunks ≫ Libotr Version <= 3.2.0
Cypherpunks ≫ Libotr Version3.1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.44% | 0.874 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684121
http://lists.cypherpunks.ca/pipermail/otr-dev/2012-July/001347.html
http://lists.cypherpunks.ca/pipermail/otr-dev/2012-July/001348.html
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00016.html
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00019.html
http://otr.git.sourceforge.net/git/gitweb.cgi?p=otr/libotr%3Ba=commitdiff%3Bh=1902baee5d4b056850274ed0fa8c2409f1187435
http://otr.git.sourceforge.net/git/gitweb.cgi?p=otr/libotr%3Ba=commitdiff%3Bh=6d4ca89cf1d3c9a8aff696c3a846ac5a51f762c1
http://otr.git.sourceforge.net/git/gitweb.cgi?p=otr/libotr%3Ba=commitdiff%3Bh=b17232f86f8e60d0d22caf9a2400494d3c77da58
http://www.debian.org/security/2012/dsa-2526
http://www.mandriva.com/security/advisories?name=MDVSA-2012:131
http://www.mandriva.com/security/advisories?name=MDVSA-2013:097
http://www.securityfocus.com/bid/54907
http://www.ubuntu.com/usn/USN-1541-1
https://bugzilla.redhat.com/show_bug.cgi?id=846377
https://exchange.xforce.ibmcloud.com/vulnerabilities/77528