An attacker can craft a specific IdaPro *.i64 file that will cause the BinDiff plugin to load an invalid memory offset. This can allow the attacker to control the instruction pointer and execute arbitrary code. It is recommended to upgrade BinDiff 7
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.zynamics.com/bindiff/manual/index.html#nyyyy7 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Google
Published: 2021-06-29T11:55:11.520266Z
Updated: 2024-09-16T16:18:11.919Z
Reserved: 2021-01-05T00:00:00
Link: CVE-2021-22545
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-06-29T12:15:08.273
Modified: 2021-07-02T17:46:45.723
Link: CVE-2021-22545
Redhat
No data.