Talos is releasing details of a new vulnerability discovered within the Power Software Power ISO disk imaging software. The software is commonly used by home users to mount ISO disk images since this capability is not included by default in Windows versions prior to version 8. A specially crafted. ISO file can cause a vulnerability resulting in potential code execution. An attacker can send a specific.ISO file to trigger this vulnerability. A use-after-free vulnerability exists in the ISO image parsing functionality of Power ISO 6.8.2.”]
Source: https://blog.talosintelligence.com/2017/05/vulnerability-spotlight-power-software.html