CVE-2013-0729

Name of the Vulnerable Software and Affected Versions PDF-XChange versions prior to 2.5.208

Description A heap-based buffer overflow issue exists due to an error when processing a JPEG stream within a PDF file. This can be exploited to execute arbitrary code via a crafted Define Huffman Table header in a JPEG image file stream. Successful exploitation requires tricking a user into opening a malicious PDF document.

Recommendations For versions prior to 2.5.208, update to version 2.5.208 or later to resolve the issue. As a temporary workaround, consider avoiding the use of PDF-XChange to open PDF files from untrusted sources until the update is applied.