Magic ISO Maker Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running Magic ISO Maker and is prone to Heap-Based Buffer Overflow Vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes in the context of the application and can cause Heap Overflow. Impact level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one For updates refer to http://www.magiciso.com/download.htm

Insight

This flaw is due to inadequate boundary check while processing 'CCD' image files.

Affected

Magic ISO Maker version 5.5 build 274 and prior.

References

http://secunia.com/advisories/34595
http://www.vupen.com/english/advisories/2009/0940

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-1257
CVSS Base Score: 9.0
AV:N/AC:L/Au:N/C:P/I:P/A:C

Related Vulnerabilities

Audacity Buffer Overflow Vulnerability (Win)
Audacity Buffer Overflow Vulnerability (Linux)
Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability
Bopup Communication Server Remote Buffer Overflow Vulnerability
Adobe Acrobat and Reader SING 'uniqueName' Buffer Overflow Vulnerability (Win)

Take action and discover your vulnerabilities