CVE-2015-8836

Name of the Vulnerable Software and Affected Versions FuseISO version 20070708

Description The issue is caused by an integer overflow in the isofs real read zf function, which can lead to a heap-based buffer overflow when a large ZF block size is encountered in an ISO file. This could allow remote attackers to cause a denial of service, resulting in an application crash, or possibly have other unspecified impacts.

Recommendations For FuseISO version 20070708, consider avoiding the use of large ZF block sizes in ISO files until a patch is available. As a temporary workaround, restrict access to ISO files with potentially large ZF block sizes to minimize the risk of exploitation.