Buffer overflow in Hex-rays Ida

CVE-2014-9458

Heap-based buffer overflow in the GDB debugger module in Hex-Rays IDA Pro before 6.6 cumulative fix 2014-12-24 allows remote GDB servers to have unspecified impact via unknown vectors.

Vulnerability class: Buffer Overflow

EPSS: 0.007 (71.3th percentile) — read the EPSS interpretation.

Affected products

Hex-rays Ida
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
61863 (x_refsource_SECUNIA, third-party-advisory)
87981 (vdb-entry, x_refsource_BID)