Ezb Systems: >> Ultraiso Security Vulnerabilities
Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string (filename) in a .cue file, a related issue to CVE-2007-2761. NOTE: some details are obtained from third party information.
CVSS Score
7.6
EPSS Score
0.803
Published
2007-05-30
Directory traversal vulnerability in UltraISO 8.0.0.1392 allows remote attackers to write arbitrary files via a .. (dot dot) in a filename in an ISO image.
CVSS Score
5.0
EPSS Score
0.076
Published
2006-04-29