CVE-2015-8837

Name of the Vulnerable Software and Affected Versions FuseISO version 20070708

Description The issue is related to a stack-based buffer overflow in the isofs real readdir function, which can be triggered by a long pathname in an ISO file. This can cause a denial of service, resulting in an application crash, or possibly allow the execution of arbitrary code.

Recommendations For FuseISO version 20070708, consider restricting the use of long pathnames in ISO files to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the isofs real readdir function with potentially malicious ISO files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.