Buffer Overflow Issue in Hex-Rays IDA Pro Product
CVE-2011-1049

Currently unrated

Key Information:

Vendor: Hex-rays
Status: Ida
Vendor: CVE Published:; 21 February 2011

Summary

A buffer overflow vulnerability exists in the Mach-O input file loader of Hex-Rays IDA Pro versions 5.7 and 6.0. Attackers can exploit this vulnerability through user-assisted mechanisms by delivering a crafted Mach-O file, which may lead to a denial of service condition or potential execution of arbitrary code. This could compromise the integrity and confidentiality of the affected systems, highlighting the importance of applying timely security updates.

References

https://www.hex-rays.com/vulnfix.shtml

x_refsource_CONFIRM

http://osvdb.org/70846

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/43190

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 21, 2011