Aggregates CVE and security vulnerability intelligence across all datarescue-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk input validation, vendor risk buffer overflow, and vendor risk denial of service and related problems; some flaws may lead to vendor impact unexpected behavior.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-1666 | The processor_request function in the debugger server for DataRescue IDA Pro 5.0 and 5.1 does not verify that authentication has taken place before invoking the perform_request function, which allows remote attackers to perform unauthorized actions. | [email protected] | 10.0 | 3.15% | 2007-03-24 | 2026-04-23 |
| CVE-2005-0770 | Format string vulnerability in DataRescue Interactive Disassembler and Debugger (IDA) Pro 4.7.0.830 allows remote attackers or local users to cause a denial of service (CPU consumption or application crash) and possibly execute arbitrary code via format string specifiers in a dynamic link library (DLL) name. | [email protected] | 7.5 | 3.25% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0115 | Stack-based buffer overflow in DataRescue Interactive Disassembler (IDA) Pro 4.7 allows attackers to execute arbitrary code via a PE file with an Import Address Table containing a long import library name. | [email protected] | 7.5 | 2.74% | 2005-01-24 | 2026-04-16 |