PT-2011-5104 · Hex Rays · Ida Pro

Haifei Li

·

Published

2011-12-27

·

Updated

2017-08-29

·

CVE-2011-4783

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions IDA Pro versions prior to 1.5.2.3
Description The issue allows user-assisted remote attackers to execute arbitrary code via a crafted IDB file. This is related to improper handling of certain swig runtime data files in the current working directory.
Recommendations For versions prior to 1.5.2.3, update to version 1.5.2.3 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2011-4783

Affected Products

Ida Pro