4 matches found
CVE-2007-2888
creationtimestamp| type| source ---|---|--- 2010-04-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16627 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ultraisocue.rb 2025-02-06 03:13:38+00:00| see...
UltraISO CUE File Parsing Buffer Overflow
This module exploits a stack-based buffer overflow in EZB Systems, Inc's UltraISO. When processing .CUE files, data is read from file into a fixed-size stack buffer. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to...
CVE-2007-2888
Stack-based buffer overflow in UltraISO 8.6.2.2011 and earlier allows user-assisted remote attackers to execute arbitrary code via a long FILE string filename in a .cue file, a related issue to CVE-2007-2761. NOTE: some details are obtained from third party information...
CVE-2007-2888
CVE-2007-2888 describes a stack-based buffer overflow in UltraISO when parsing .CUE files. The vulnerability arises from lack of bounds checking while reading a long FILE string (filename) from a .cue file, enabling a user-assisted remote attacker to execute arbitrary code. Affected product/versi...