PT-2009-1249 · Ez Systems · Ultraiso
Published
2009-04-01
·
Updated
2018-10-11
·
CVE-2008-4825
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
UltraISO versions 9.3.1.2633 through 9.3.3.2685
Description
The issue is related to multiple buffer overflows that can be triggered by crafted files, specifically CIF, C2D, or GI files, allowing attackers to execute arbitrary code. This can be achieved with user assistance.
Recommendations
For versions 9.3.1.2633 through 9.3.3.2685, update to version 9.3.3.2685 or later to resolve the issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ultraiso