Vulnerabilities > CVE-2011-1052 - Numeric Errors vulnerability in Hex-Rays IDA 5.7/6.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

hex-rays

CWE-189

critical

NVD

Published: 2011-02-21

Updated: 2017-08-17

Summary

Integer overflow in the PSX/GEOS input file loaders in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors related to memory allocation.

Vulnerable Configurations

Part	Description	Count
Application	Hex-Rays HEX Rays IDA 5.7 HEX Rays IDA 6.0	2

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://www.securityfocus.com/bid/46525
https://exchange.xforce.ibmcloud.com/vulnerabilities/65560
https://www.hex-rays.com/vulnfix.shtml