CVE-2013-3485

Name of the Vulnerable Software and Affected Versions Soda PDF version 5.1.183.10520

Description The issue allows local users to gain privileges via a Trojan horse dwmapi.dll or api-ms-win-core-localregistry-l1-1-0.dll file in the current working directory. This is due to multiple untrusted search path vulnerabilities.

Recommendations For Soda PDF version 5.1.183.10520, consider removing or restricting access to the dwmapi.dll and api-ms-win-core-localregistry-l1-1-0.dll files in the current working directory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.