2 matches found
PowerISO ISO Parsing Use After Free(CVE-2017-2823)
Summary A use-after-free vulnerability exists in the .ISO parsing functionality of PowerISO 6.8. A specially crafted .ISO file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .ISO file to trigger this vulnerability. Tested Versions PowerISO 6.8 6, ...
CVE-2017-2823
PowerISO is affected by CVE-2017-2823 due to a use-after-free in the .ISO parsing function of PowerISO 6.8. A specially crafted .ISO file can trigger the vulnerability, and an attacker can deliver this payload by sending such a file to the PowerISO software, potentially enabling arbitrary code ex...