A memory corruption vulnerability in libotr, a c implementation of off the record encryption commonly used in chat clients, allows for remotely executing code on vulnerable machines and crashing applications using libotr (archived). Large messages sent to libotr can cause an integer overflow which then spills into the heap.
 |
Qntra - Herald Of The Most Serene Republic |