Cue.File.Filename.Stack.Overflow
Description
This indicates an attempt to exploit a Buffer Overflow vulnerability in multiple products.
This vulnerability is caused by a boundary error that occurs when the vulnerable software deals with a malformed .cue file. It allows remote attackers to execute arbitrary code by sending a specially crafted .cue file.
Affected Products
Magic ISO MagicISO 5.4(build 239)
VUPlayer VUPlayer 2.49
EZB Systems UltraISO 8.6.2 .2011
EZB Systems UltraISO 8.5.1 .1860
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any officially supplied fix for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |