• IDP Daily Update #1312
  posted: 11/18/08
  
• NSM Daily Update #1312
  posted: 11/18/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1312
  posted: 11/18/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 11/18/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 11/17/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: OllyDBG 'ollydbg.ini' Debug Argument Local Buffer Overflow Vulnerability

Severity: MODERATE

Description:

OllyDBG is a debugging application.

OllyDBG is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. The issue affects the 'Argument' data supplied to 'ollydbg.ini' and may be triggered when the application processes data in excess of 262 bytes.

Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

OllyDBG v1.10 is vulnerable; other versions may also be affected.

Affected Products:

• OllyDbg OllyDbg 1.10
• OllyDbg OllyDbg 1.10.0

References:

• OllyDbg: OllyDbg Homepage