{"api_version":"1","generated_at":"2026-04-27T16:04:10+00:00","cve":"CVE-2009-1260","urls":{"html":"https://cve.report/CVE-2009-1260","api":"https://cve.report/api/cve/CVE-2009-1260.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2009-1260","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2009-1260"},"summary":{"title":"CVE-2009-1260","description":"Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file.","state":"PUBLISHED","assigner":"mitre","published_at":"2009-04-07 23:30:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["CWE-119","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"9.3","severity":"","vector":"AV:N/AC:M/Au:N/C:C/I:C/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://osvdb.org/53275","name":"http://osvdb.org/53275","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49672","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49672","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2009/0935","name":"http://www.vupen.com/english/advisories/2009/0935","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.exploit-db.com/exploits/8343","name":"https://www.exploit-db.com/exploits/8343","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"UltraISO <= 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/34363","name":"http://www.securityfocus.com/bid/34363","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"UltraISO CCD and IMG File Buffer Overflow Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://secunia.com/advisories/34581","name":"http://secunia.com/advisories/34581","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"UltraISO CCD Image Processing Buffer Overflow Vulnerability - Secunia.com","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2009-1260","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-1260","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"3.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"3.1_sr1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"3.1_sr2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"4.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"4.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"4.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"5.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"5.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"5.55","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"5.55_sr-1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"5.55_sr-2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.51","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.52","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.52_sr-1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.52_sr-2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.56_sr-1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"6.56_sr-2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.0","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.1","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.21_sr-1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.21_sr-2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.22_me","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.23","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.25","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.5","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.51","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.52","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.55","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.56","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.6","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.62","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.65","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.65_sr-2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"7.66","cpe7":"-","cpe8":"me","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.12","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.2","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.51","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.6","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.61","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.62","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.63","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.65","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"8.66","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.0","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.1.2","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.2","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.3","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.3.1","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"9.3.2","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"1260","vulnerable":"1","versionEndIncluding":"9.3.3","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ezbsystems","cpe5":"ultraiso","cpe6":"*","cpe7":"-","cpe8":"pe","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T05:04:49.333Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"ultraiso-ccd-img-bo(49672)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49672"},{"name":"34363","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/34363"},{"name":"53275","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/53275"},{"name":"ADV-2009-0935","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2009/0935"},{"name":"8343","tags":["exploit","x_refsource_EXPLOIT-DB","x_transferred"],"url":"https://www.exploit-db.com/exploits/8343"},{"name":"34581","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/34581"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2009-04-03T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-09-28T12:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"ultraiso-ccd-img-bo(49672)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49672"},{"name":"34363","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/34363"},{"name":"53275","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/53275"},{"name":"ADV-2009-0935","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2009/0935"},{"name":"8343","tags":["exploit","x_refsource_EXPLOIT-DB"],"url":"https://www.exploit-db.com/exploits/8343"},{"name":"34581","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/34581"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2009-1260","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"ultraiso-ccd-img-bo(49672)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49672"},{"name":"34363","refsource":"BID","url":"http://www.securityfocus.com/bid/34363"},{"name":"53275","refsource":"OSVDB","url":"http://osvdb.org/53275"},{"name":"ADV-2009-0935","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2009/0935"},{"name":"8343","refsource":"EXPLOIT-DB","url":"https://www.exploit-db.com/exploits/8343"},{"name":"34581","refsource":"SECUNIA","url":"http://secunia.com/advisories/34581"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2009-1260","datePublished":"2009-04-07T23:00:00.000Z","dateReserved":"2009-04-07T00:00:00.000Z","dateUpdated":"2024-08-07T05:04:49.333Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2009-04-07 23:30:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["CWE-119","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:*:-:pe:*:*:*:*:*","versionEndIncluding":"9.3.3","matchCriteriaId":"17F5DF7A-9903-43A9-9BD2-E13EFAB08439"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:3.1:*:*:*:*:*:*:*","matchCriteriaId":"DC0D66CC-2BB9-42F2-AB1A-F2528F524235"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:3.1_sr1:*:*:*:*:*:*:*","matchCriteriaId":"7E500A39-2771-4755-9BB8-117CAD275958"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:3.1_sr2:*:*:*:*:*:*:*","matchCriteriaId":"DDA8DC52-D446-4610-85DB-FF370D2338B4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:4.0:*:*:*:*:*:*:*","matchCriteriaId":"5236E727-20BB-42A3-BAE1-A0243FED3633"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:4.1:*:*:*:*:*:*:*","matchCriteriaId":"5A1033E2-58A8-42A7-B782-BEA733CFE5EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:4.5:*:*:*:*:*:*:*","matchCriteriaId":"34021E37-E7F0-460A-A72D-936B8FB0EECC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:5.0:*:*:*:*:*:*:*","matchCriteriaId":"37F6294A-3E02-4B37-AB76-E5BCC99F0462"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:5.1:*:*:*:*:*:*:*","matchCriteriaId":"156623DE-C954-4470-97A0-87BB66AA0BA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:5.55:*:*:*:*:*:*:*","matchCriteriaId":"C42C26DB-5C2B-444A-A2CE-0EF9DE1C57AF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:5.55_sr-1:*:*:*:*:*:*:*","matchCriteriaId":"199E347B-61BE-4EF9-A2B6-6D1998462E54"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:5.55_sr-2:*:*:*:*:*:*:*","matchCriteriaId":"BEF4B560-72DF-4FDB-B77B-60D8253B8B22"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.0:*:*:*:*:*:*:*","matchCriteriaId":"75393582-C1D5-42FD-9C4D-4E39810A89E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.1:*:*:*:*:*:*:*","matchCriteriaId":"AE47C4E9-C4AB-48C7-814F-0F58E3F358CA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.5:*:*:*:*:*:*:*","matchCriteriaId":"6B07F4F7-7C7C-4358-A304-02F5DFCA82AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.51:*:*:*:*:*:*:*","matchCriteriaId":"FE09B73F-A9F1-473E-9C0A-8CC144DD00A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.52:*:*:*:*:*:*:*","matchCriteriaId":"EC84B744-042C-4C83-A0D6-37F1934E35AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.52_sr-1:*:*:*:*:*:*:*","matchCriteriaId":"E7571790-24EA-4764-AB99-3F4AA792B81E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.52_sr-2:*:*:*:*:*:*:*","matchCriteriaId":"7621A640-266C-4435-9770-1804F186CA36"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.56_sr-1:*:*:*:*:*:*:*","matchCriteriaId":"806D55A4-F87D-49D0-AD72-A254FAEDF56B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:6.56_sr-2:*:*:*:*:*:*:*","matchCriteriaId":"ECC8414A-FE5D-4343-842D-6FD1B6EB4BE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.0:-:me:*:*:*:*:*","matchCriteriaId":"9BF9EF37-892B-4314-9F57-95D11548E659"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.1:-:me:*:*:*:*:*","matchCriteriaId":"3BA4DAF7-72D5-47A9-ADD9-0274D8CBCCA7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.5:-:me:*:*:*:*:*","matchCriteriaId":"12CC24A7-74D6-4FA5-B9F2-E0669D1E4E81"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.6:-:me:*:*:*:*:*","matchCriteriaId":"6AD36A09-943A-4B34-9439-34E0CACB1B13"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.21_sr-1:*:*:*:*:*:*:*","matchCriteriaId":"DBAB8C09-472D-46D0-8AA7-B017A0D7DC6A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.21_sr-2:*:*:*:*:*:*:*","matchCriteriaId":"119B2B6F-E010-487F-A8BE-7929426E3C3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.22_me:*:*:*:*:*:*:*","matchCriteriaId":"C86A46AD-3BB8-4F5B-9F73-2A9BE6BD3B65"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.23:-:me:*:*:*:*:*","matchCriteriaId":"995353BF-F882-44C4-8698-20AE41FDDF36"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.25:-:me:*:*:*:*:*","matchCriteriaId":"7FB3582B-A19A-4D00-8D3C-47D73386E215"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.51:-:me:*:*:*:*:*","matchCriteriaId":"04F1A22F-80DF-4F0C-A6AE-4232327AF258"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.52:-:me:*:*:*:*:*","matchCriteriaId":"F2CB70BB-8DF2-4FCE-914C-BE5C6D8BF7F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.55:-:me:*:*:*:*:*","matchCriteriaId":"0ED81FD8-2DCD-44A7-B29D-EA537D8A76C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.56:-:me:*:*:*:*:*","matchCriteriaId":"08DBBFF6-2B77-4B28-AEBE-51CC37F57169"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.62:-:me:*:*:*:*:*","matchCriteriaId":"FCE3C7D8-0DC3-442E-9733-7D05770E6D51"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.65:-:me:*:*:*:*:*","matchCriteriaId":"A650E9E8-A2E1-420B-8EBC-4608ED2669F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.65_sr-2:*:*:*:*:*:*:*","matchCriteriaId":"91A65038-1900-44BF-BAAE-DA348A1C2274"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:7.66:-:me:*:*:*:*:*","matchCriteriaId":"E3EBB8A7-1F10-4E4A-9965-C142976F335B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8:-:pe:*:*:*:*:*","matchCriteriaId":"1A8AF672-11EF-4D00-9CB0-4C687C73D27E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.2:-:pe:*:*:*:*:*","matchCriteriaId":"A2238638-682D-4EFD-A793-FB015D24AF0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.6:-:pe:*:*:*:*:*","matchCriteriaId":"A7ABE1FD-F407-4A2A-80AC-798DAD000A7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.12:-:pe:*:*:*:*:*","matchCriteriaId":"CEA13675-CB4C-4ADB-911B-0834AED3504B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.51:-:pe:*:*:*:*:*","matchCriteriaId":"63DD03D1-E0C9-47DB-98E6-CDA26193E53F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.61:-:pe:*:*:*:*:*","matchCriteriaId":"3E2E7CD0-51CE-461B-9098-6341B6480298"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.62:-:pe:*:*:*:*:*","matchCriteriaId":"912F4170-8E12-400C-97C1-109396B5D8D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.63:-:pe:*:*:*:*:*","matchCriteriaId":"E31327FF-B3CC-4236-BB84-B6DD2659A0EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.65:-:pe:*:*:*:*:*","matchCriteriaId":"F6F3AF7A-AE94-4C94-BF1D-219B4454149B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:8.66:-:pe:*:*:*:*:*","matchCriteriaId":"499BBD33-BE6A-42D6-9FC2-DE0D5A848E0F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.0:-:pe:*:*:*:*:*","matchCriteriaId":"79ABC413-761B-4EB3-A9FC-B83EE5DAFC8C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.1.2:-:pe:*:*:*:*:*","matchCriteriaId":"8D32892E-C508-469F-B06B-0F1C546106C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.2:-:pe:*:*:*:*:*","matchCriteriaId":"94B835E1-8E67-46FE-B9C6-854525DCF0C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.3:-:pe:*:*:*:*:*","matchCriteriaId":"266CEA1B-5C88-4A66-BD7B-53EC2750575C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.3.1:-:pe:*:*:*:*:*","matchCriteriaId":"4C9B2E61-9531-478C-AF8A-F16439F0A221"},{"vulnerable":true,"criteria":"cpe:2.3:a:ezbsystems:ultraiso:9.3.2:-:pe:*:*:*:*:*","matchCriteriaId":"375D5262-2DE1-4056-A010-F171A852AFBC"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2009","CveId":"1260","Ordinal":"1","Title":"CVE-2009-1260","CVE":"CVE-2009-1260","Year":"2009"},"notes":[{"CveYear":"2009","CveId":"1260","Ordinal":"1","NoteData":"Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted (1) CCD or (2) IMG file.","Type":"Description","Title":"CVE-2009-1260"},{"CveYear":"2009","CveId":"1260","Ordinal":"2","NoteData":"2009-04-07","Type":"Other","Title":"Published"},{"CveYear":"2009","CveId":"1260","Ordinal":"3","NoteData":"2017-09-28","Type":"Other","Title":"Modified"}]}}}