Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/49672http://www.securityfocus.com/bid/34363http://osvdb.org/53275http://www.vupen.com/english/advisories/2009/0935https://www.exploit-db.com/exploits/8343http://secunia.com/advisories/34581
