SB2017051104 - Two remote code execution vulnerabilities in Power Software PowerISO

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Stack-based buffer overflow (CVE-ID: CVE-2017-2817)

The vulnerability allows a remote unauthenticated user to execute arbitrary code on the target system.

The weakness exists due to stack-based buffer overflow in the ISO parsing functionality of Power Software Ltd PowerISO. A remote attacker can send a specially crafted ISO file, trigger memory corruption and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability result in arbitrary code execution.

2) Use-after-free error (CVE-ID: CVE-2017-2823)

The vulnerability allows a remote unauthenticated user to execute arbitrary code on the target system.

The weakness exists due to use-after-free error in the ISO parsing functionality of Power Software Ltd PowerISO. A remote attacker can send a specially crafted ISO file, trigger memory corruption and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability result in arbitrary code execution.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

• http://www.talosintelligence.com/reports/TALOS-2017-0318/
• http://www.talosintelligence.com/reports/TALOS-2017-0324/