Vulnerability Description
Format string vulnerability in DataRescue Interactive Disassembler and Debugger (IDA) Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service (CPU consumption or application crash) and possibly execute arbitrary code via format string specifiers in a dynamic link library (DLL) name.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Datarescue | Ida Pro | 4.7.0.830 |
References
- http://marc.info/?l=bugtraq&m=111100269512216&w=2
- http://pb.specialised.info/all/adv/ida-debugger-adv.txtExploit
- http://secunia.com/advisories/14610PatchVendor Advisory
- http://www.datarescue.com/cgi-local/ultimatebb.cgi?ubb=get_topic%3Bf=2%3Bt=00015
- http://marc.info/?l=bugtraq&m=111100269512216&w=2
- http://pb.specialised.info/all/adv/ida-debugger-adv.txtExploit
- http://secunia.com/advisories/14610PatchVendor Advisory
- http://www.datarescue.com/cgi-local/ultimatebb.cgi?ubb=get_topic%3Bf=2%3Bt=00015
FAQ
What is CVE-2005-0770?
CVE-2005-0770 is a vulnerability with a CVSS score of 7.5 (HIGH). Format string vulnerability in DataRescue Interactive Disassembler and Debugger (IDA) Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service (CPU consumption or application ...
How severe is CVE-2005-0770?
CVE-2005-0770 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0770?
Check the references section above for vendor advisories and patch information. Affected products include: Datarescue Ida Pro.