EUVD-2007-1660

Malware in sbrugna...

CVE-2007-1666

The processorrequest function in the debugger server for DataRescue IDA Pro 5.0 and 5.1 does not verify that authentication has taken place before invoking the performrequest function, which allows remote attackers to perform unauthorized actions...

Authentication flaw

The processorrequest function in the debugger server for DataRescue IDA Pro 5.0 and 5.1 does not verify that authentication has taken place before invoking the performrequest function, which allows remote attackers to perform unauthorized actions...

CVE-2007-1666

The processorrequest function in the debugger server for DataRescue IDA Pro 5.0 and 5.1 does not verify that authentication has taken place before invoking the performrequest function, which allows remote attackers to perform unauthorized actions...

CVE-2007-1666

CVE-2007-1666 affects DataRescue IDA Pro 5.0 and 5.1. The processor_request function in the debugger server does not verify authentication before calling perform_request, enabling remote attackers to perform unauthorized actions. This is the stated root cause and directly impacts remote debugging...

iDefense Security Advisory 03.23.07: DataRescue IDA Pro Remote Debugger Server Authentication Bypass Vulnerability

DataRescue IDA Pro Remote Debugger Server Authentication Bypass Vulnerability iDefense Security Advisory 03.23.07 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 23, 2007 I. BACKGROUND DataRescue Inc.'s IDA Pro is a disassembler and debugger for Windows, Linux, or Macintosh. It support...

CVE-2005-0770

Format string vulnerability in DataRescue Interactive Disassembler and Debugger IDA Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service CPU consumption or application crash and possibly execute arbitrary code via format string specifiers in a dynamic link library DLL...

DataRescue Interactive Disassembler Pro (IDA Pro disassembler/debugger) buffer overflow and format string bug

Buffer overflow on oversized inported library name, format string bug in library name...

ADVISORY: DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability

DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability by Piotr Bania [email protected] http://pb.specialised.info Severity: High / Medium - code execution. Versions affected: Probably all versions, however tested on 4.7.0.830. I. BACKGROUND "The IDA Pro Disassembler and...

CVE-2005-0115

DataRescue Interactive Disassembler Pro (IDA Pro) 4.7 is affected by a stack-based buffer overflow in the PE import directory parsing (Import Address Table). The vulnerability allows arbitrary code execution under the user’s context when a target opens a malicious PE file containing a long import...

iDEFENSE Security Advisory 01.24.05: DataRescue Interactive Disassembler Pro Buffer Overflow Vulnerability

DataRescue Interactive Disassembler Pro Buffer Overflow Vulnerability iDEFENSE Security Advisory 01.24.05 www.idefense.com/application/poi/display?id=189&type=vulnerabilities January 24, 2005 I. BACKGROUND DataRescue Inc.'s IDA Pro is a Windows or Linux hosted multi-processor disassembler and...