Cisco Blogs

Vulnerability Spotlight: EZB Systems UltraISO ISO Parsing Code Execution Vulnerability

- August 2, 2017 - 1 Comment

Discovered by Piotr Bania of Cisco Talos

Today, Talos is releasing details of a new vulnerability discovered within the EZB Systems UltraISO ISO disk image creator software. TALOS-2017-0342 (CVE-2017-2840) may allow an attacker to execute arbitrary code remotely on the vulnerable system when a specially crafted ISO image is opened and parsed by the UltraISO software.


Leave a comment

We'd love to hear from you! To earn points and badges for participating in the conversation, join Cisco Social Rewards. Your comment(s) will appear instantly on the live site. Spam, promotional and derogatory comments will be removed.


    Excellent article, and thanks for the information, it's good to know to be aware off and increase my personal knowledge. Thanks TALOS Teamwork.