Remote Denial of Service Vulnerability in Hex-Rays IDA Pro
CVE-2011-1053

Currently unrated

Key Information:

Vendor: Hex-rays
Status: Ida
Vendor: CVE Published:; 21 February 2011

Summary

A vulnerability exists in the Mach-O input file loader of Hex-Rays IDA Pro versions 5.7 and 6.0, allowing remote attackers to execute a denial of service attack. By crafting a specific Mach-O file, an attacker can trigger out-of-memory exceptions that hinder the software's ability to analyze code, disrupting normal operations for users. This vulnerability underscores the importance of scrutinizing input files and validating their integrity to prevent exploitation.

References

https://www.hex-rays.com/vulnfix.shtml

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/65559

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/46525

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Feb 21, 2011
Vulnerability Reserved
Feb 21, 2011