all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Vulnerability Spotlight: Memory corruption vulnerability discovered in PowerISO

Add to bookmarks
Dec. 7, 2022, 6:50 p.m. | Kri Dontje

Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com

Piotr Bania of Cisco Talos discovered this vulnerability.

Cisco Talos recently discovered a memory corruption vulnerability in PowerISO.

TALOS-2022-1644 (CVE-2022-41992) is a memory corruption vulnerability that exists in the VHD File Format parsing functionality of PowerISO 8.3. A specially crafted file can lead to an out-of-bounds write. A victim

memory memory corruption spotlight vulnerability vulnerability spotlight

Visit resource

More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

What’s the deal with the massive backlog of vulnerabilities at the NVD? 3 days, 18 hours ago | blog.talosintelligence.com
backlog current deal management +10
Could the Brazilian Supreme Court finally hold people accountable for sharing disinformation? 4 days, 12 hours ago | blog.talosintelligence.com
account blocked court disinformation +8
OfflRouter virus causes Ukrainian users to upload confidential documents to VirusTotal 5 days, 18 hours ago | blog.talosintelligence.com
cisco cisco talos code confidential +20
Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials 6 days, 18 hours ago | blog.talosintelligence.com
attacks brute brute-force cisco +24
The internet is already scary enough without April Fool’s jokes 1 week, 4 days ago | blog.talosintelligence.com
april backdoor community internet +7
Vulnerability in some TP-Link routers could lead to factory reset 1 week, 5 days ago | blog.talosintelligence.com
amd directx driver factory +10
April’s Patch Tuesday includes 150 vulnerabilities, 60 which could lead to remote code execution 1 week, 6 days ago | blog.talosintelligence.com
april code code execution critical +10
Starry Addax targets human rights defenders in North Africa with new malware 1 week, 6 days ago | blog.talosintelligence.com
activists actor africa cisco +18
There are plenty of ways to improve cybersecurity that don’t involve making workers return to … 2 weeks, 4 days ago | blog.talosintelligence.com
actions april cybersecurity don +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

L2-Network Security Administrator

@ Kyndryl | KIN51515 Mumbai (KIN51515) We Work
View on infosec-jobs.com

Head of Cybersecurity Advisory and Architecture

@ CMA CGM | Marseille, FR
View on infosec-jobs.com

Systems Engineers/Cyber Security Engineers/Information Systems Security Engineer

@ KDA Consulting Inc | Herndon, Virginia, United States
View on infosec-jobs.com

R&D DevSecOps Staff Software Development Engineer 1

@ Sopra Steria | Noida, Uttar Pradesh, India
View on infosec-jobs.com
View more jobs