CVE-2005-0770 Information

Description

Format string vulnerability in DataRescue Interactive Disassembler and Debugger (IDA) Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service (CPU consumption or application crash) and possibly execute arbitrary code via format string specifiers in a dynamic link library (DLL) name.

Reference

http://marc.info/?l=bugtraq&m=111100269512216&w=2 http://pb.specialised.info/all/adv/ida-debugger-adv.txt http://secunia.com/advisories/14610 http://www.datarescue.com/cgi-local/ultimatebb.cgi?ubb=get_topic;f=2;t=000155;p=0