8 matches found
CVE-2022-32441
The CVE-2022-32441 entry describes a memory corruption in Hex-Rays IDA Pro v6.6 that can cause a Denial of Service via a crafted file. The root cause is described as Data from Faulting Address controlling the subsequent Write Address starting at msvcrt!memcpy+0x56. The vulnerability affects IDA P...
CVE-2011-1049
CVE-2011-1049 affects Hex-Rays IDA Pro versions 5.7 and 6.0, where the Mach-O input file loader contains a buffer overflow in its Mach-O parsing. The vulnerability can be triggered by a crafted Mach-O file and may allow user-assisted remote attackers to cause a crash (DoS) and potentially execute...
CVE-2011-1051
Hex-Rays IDA Pro versions 5.7 and 6.0 are affected by CVE-2011-1051 due to an integer overflow in the COFF/EPOC/EXPLOAD input file loaders. The NVD entry notes unknown impact, while OpenVAS and other feeds corroborate multiple vulnerabilities in IDA Pro. Remediation in practice is to update to a ...
CVE-2011-1050
Hex-Rays IDA Pro versions 5.7 and 6.0 are affected by CVE-2011-1050. The description notes an unspecified vulnerability with unknown impact and attack vectors related to the conversion of string encodings and inconsistencies in the handling of UTF-8 sequences in the user interface. OpenVAS and re...
CVE-2011-1054
Hex-Rays IDA Pro CVE-2011-1054 affects the PEF input file loader in IDA Pro versions 5.7 and 6.0. The connected OpenVAS entries describe Hex-Rays IDA Pro multiple vulnerabilities, but do not provide concrete exploit vectors or root-cause details for this CVE. The impact in the CVE entry is stated...
CVE-2011-1052
Hex-Rays IDA Pro versions 5.7 and 6.0 are affected by CVE-2011-1052 due to an integer overflow in the PSX/GEOS input file loaders, related to memory allocation. The root cause is described as an integer overflow in the loading/parsing path, with the initial CVE entry noting unknown impact and att...
CVE-2011-1053
Hex-Rays IDA Pro is affected by a vulnerability in the Mach-O input file loader (IDA Pro versions 5.7 and 6.0) that allows user‑assisted remote attackers to trigger a denial of service (out‑of‑memory and inability to analyze code) by using a crafted Mach‑O file. The OpenVAS/OpenVAS‑style entry an...
CVE-2014-9458
Hex-Rays IDA Pro before version 6.6 cumulative fix (2014-12-24) is affected by a heap-based buffer overflow in the GDB debugger module. This vulnerability could allow remote GDB servers to cause an unspecified impact via unknown vectors. Remediation: upgrade to IDA Pro 6.6 or later (per reference...