Vulnerability CVE-2011-1050


Published: 2011-02-21   Modified: 2012-02-13

Description:
Unspecified vulnerability in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors related to "converson of string encodings" and "inconsistencies in the handling of UTF8 sequences by the user interface."

Type:

CWE-noinfo

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Hex-rays -> IDA 

 References:
https://www.hex-rays.com/vulnfix.shtml
http://xforce.iss.net/xforce/xfdb/65562
http://www.vupen.com/english/advisories/2011/0357
http://www.securityfocus.com/bid/46525

Copyright 2024, cxsecurity.com

 

Back to Top