Ezbsystems: >> Ultraiso >> 9.3.1.2633 Security Vulnerabilities
Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and possibly other versions before 9.3.3.2685, allow user-assisted attackers to execute arbitrary code via format string specifiers in the filename of a (1) DAA or (2) ISZ file.
CVSS Score
9.3
EPSS Score
0.009
Published
2009-04-01
Multiple buffer overflows in UltraISO 9.3.1.2633, and possibly other versions before 9.3.3.2685, allow user-assisted attackers to execute arbitrary code via a crafted (1) CIF, (2) C2D, or (3) GI file.
CVSS Score
9.3
EPSS Score
0.016
Published
2009-04-01