CVE-2015-9231
Last modified
CVE-2015-9231 is a vulnerability of currently unknown severity. iTerm2 3.x before 3.1.1 allows remote attackers to discover passwords by reading DNS queries. A new (default) feature was added to iTerm2 version 3.0.0 (and unreleased 2.9.x versions such as 2.9.20150717) that resulted in a potential information disclosure. EPSS estimates a 2.23% chance of exploitation in the next 30 days.
Description
iTerm2 3.x before 3.1.1 allows remote attackers to discover passwords by reading DNS queries. A new (default) feature was added to iTerm2 version 3.0.0 (and unreleased 2.9.x versions such as 2.9.20150717) that resulted in a potential information disclosure. In an attempt to see whether the text under the cursor (or selected text) was a URL, the text would be sent as an unencrypted DNS query. This has the potential to result in passwords and other sensitive information being sent in cleartext without the user being aware.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Iterm2 | Iterm2 | 2.9.20151111 | — |
| Iterm2 | Iterm2 | 2.9.20151229 | — |
| Iterm2 | Iterm2 | 2.9.20160102 | — |
| Iterm2 | Iterm2 | 2.9.20160113 | — |
| Iterm2 | Iterm2 | 2.9.20160206 | — |
| Iterm2 | Iterm2 | 2.9.20160313 | — |
| Iterm2 | Iterm2 | 2.9.20160422 | — |
| Iterm2 | Iterm2 | 2.9.20160426 | — |
| Iterm2 | Iterm2 | 2.9.20160510 | — |
| Iterm2 | Iterm2 | 2.9.20160523 | — |
| Iterm2 | Iterm2 | 3.0.0 | — |
| Iterm2 | Iterm2 | 3.0.1 | Preview |
| Iterm2 | Iterm2 | 3.0.2 | — |
| Iterm2 | Iterm2 | 3.0.3 | — |
| Iterm2 | Iterm2 | 3.0.4 | — |
| Iterm2 | Iterm2 | 3.0.5 | — |
| Iterm2 | Iterm2 | 3.0.6 | — |
| Iterm2 | Iterm2 | 3.0.7 | — |
| Iterm2 | Iterm2 | 3.0.8 | — |
| Iterm2 | Iterm2 | 3.0.9 | — |
| Iterm2 | Iterm2 | 3.0.10 | — |
| Iterm2 | Iterm2 | 3.0.11 | — |
| Iterm2 | Iterm2 | 3.0.12 | — |
| Iterm2 | Iterm2 | 3.0.13 | — |
| Iterm2 | Iterm2 | 3.0.14 | — |
| Iterm2 | Iterm2 | 3.0.15 | — |
| Iterm2 | Iterm2 | 3.0.20160531 | — |
| Iterm2 | Iterm2 | 3.1.0 | — |
References
- https://github.com/gnachman/iTerm2/commit/e4eb1063529deb575b75b396138d41554428d522Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/3688Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/5303Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/6050Exploit, Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/6068Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/wikis/dnslookupissueThird Party Advisory
- https://news.ycombinator.com/item?id=15286956Issue Tracking, Third Party Advisory
- https://github.com/gnachman/iTerm2/commit/e4eb1063529deb575b75b396138d41554428d522Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/3688Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/5303Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/6050Exploit, Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/issues/6068Issue Tracking, Third Party Advisory
- https://gitlab.com/gnachman/iterm2/wikis/dnslookupissueThird Party Advisory
- https://news.ycombinator.com/item?id=15286956Issue Tracking, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-9231?
How severe is CVE-2015-9231?
How do I fix CVE-2015-9231?
Are you affected by CVE-2015-9231?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST