PT-2009-3797 · Epuz · Ultraiso

Publicado

2009-04-07

Atualizado

2017-09-29

CVE-2009-1260

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions UltraISO versions 9.3.3.2685 and earlier UltraISO versions prior to 9.7

Description The issue is related to multiple stack-based buffer overflows that can be triggered by remote attackers using crafted files, specifically CCD or IMG files. This can lead to a denial of service, causing the program to crash, or potentially allow the execution of arbitrary code.

Recommendations For UltraISO versions 9.3.3.2685 and earlier, update to version 9.7 or later to resolve the issue. For UltraISO versions prior to 9.7, update to version 9.7 or later to resolve the issue.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2009-1260

Produtos afetados

Ultraiso

PT-2009-3797 · Epuz · Ultraiso

CVE-2009-1260

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9