4 matches found
UltraISO CCD File Parsing Buffer Overflow
$Id: ultraisoccd.rb 8900 2010-03-24 19:35:29Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
UltraISO CCD File Parsing Buffer Overflow
This module exploits a stack-based buffer overflow in EZB Systems, Inc's UltraISO. When processing .CCD files, data is read from file into a fixed-size stack buffer. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to...
CVE-2009-1260
UltraISO vulnerability (CVE-2009-1260): stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier when processing CCD or IMG files. Root cause: data read into a fixed-size stack buffer with no bounds checking, enabling remote code execution or crash via a crafted file. Public exploits exist...
CVE-2009-1260
creationtimestamp| type| source ---|---|--- 2009-04-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8343 2010-04-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16666 2018-05-29 15:50:33+00:00| seen|...