Lucene search

[email protected]CVE-2005-0115

HistoryJan 29, 2005 - 5:00 a.m.

CVE-2005-0115

2005-01-2905:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0115

datarescue interactive disassembler

ida pro 4.7

buffer overflow

arbitrary code execution

pe file

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

JSON

Stack-based buffer overflow in DataRescue Interactive Disassembler (IDA) Pro 4.7 allows attackers to execute arbitrary code via a PE file with an Import Address Table containing a long import library name.

Affected configurations

NVD

Node

datarescueidaMatch4.7

CPENameOperatorVersion
datarescue:idadatarescue idaeq4.7

CPE	Name	Operator	Version
datarescue:ida	datarescue ida	eq	4.7

References

secunia.com/advisories/13980

securitytracker.com/id?1012975

www.datarescue.com/ubb/ultimatebb.php?/topic/2/146.html

www.idefense.com/application/poi/display?id=189&type=vulnerabilities

www.securityfocus.com/bid/12353

exchange.xforce.ibmcloud.com/vulnerabilities/19042

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

JSON

Related for CVE-2005-0115

cvelist1 nvd1 securityvulns1