Vulnerabilities > CVE-2004-0733 - Unspecified vulnerability in Ollydbg

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ollydbg

exploit available

NVD

Published: 2004-07-27

Updated: 2017-10-11

Summary

Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are directly provided to the OutputDebugString function call.

Vulnerable Configurations

Part	Description	Count
Application	Ollydbg Ollydbg Ollydbg 1.0.6 Ollydbg Ollydbg 1.0.8B Ollydbg Ollydbg 1.0.9 Ollydbg Ollydbg 1.10	4

Exploit-Db

description	Ollydbg <= 1.10 Format String Bug. CVE-2004-0733. Local exploit for windows platform
id	EDB-ID:388
last seen	2016-01-31
modified	2004-08-10
published	2004-08-10
reporter	Ahmet Cihan
source	https://www.exploit-db.com/download/388/
title	Ollydbg <= 1.10 Format String Bug

id EDB-ID:3757

Summary

Vulnerable Configurations

Exploit-Db

References