Aggregates CVE and security vulnerability intelligence across all ollydbg-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk denial of service and related problems; some flaws may lead to vendor impact application crash and vendor impact memory corruption.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-11495 | Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to execute arbitrary code due to lack of proper bounds checking. | [email protected] | 7.5 | 0.07% | 2024-11-20 | 2025-11-04 |
| CVE-2008-3148 | Stack-based buffer overflow in (1) OllyDBG 1.10 and (2) ImpREC 1.7f allows user-assisted attackers to execute arbitrary code via a crafted DLL file that contains a long string. | [email protected] | 6.8 | 3.53% | 2008-07-11 | 2026-04-23 |
| CVE-2005-0826 | OllyDbg 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a dynamic link library (DLL) with a long filename. | [email protected] | 5.0 | 0.92% | 2005-05-02 | 2026-04-16 |
| CVE-2004-0733 | Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are directly provided to the OutputDebugString function call. | [email protected] | 7.5 | 44.26% | 2004-07-27 | 2026-04-16 |