PT-2017-2684 · Microsoft · Windows Pdf Library+1

Publicado

2017-08-08

Atualizado

2017-08-15

CVE-2017-0293

CVSS v2.0

7.6

Alta

Vetor

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Windows PDF Library versions prior to the fixed version

Description The issue is caused by an out-of-bounds operation in memory, allowing a remote attacker to execute arbitrary code when objects in memory are improperly handled. This can be exploited when the system incorrectly processes objects, potentially leading to remote code execution.

Recommendations For Microsoft Windows PDF Library, update to a version that includes the fix for this issue to prevent remote code execution. As a temporary workaround, consider restricting access to the Microsoft Windows PDF Library until a patch is available.

Correção

RCE

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

BDU:2017-01912

CVE-2017-0293

ZDI-17-636

Produtos afetados

Windows Pdf Library

Windows

PT-2017-2684 · Microsoft · Windows Pdf Library+1

CVE-2017-0293

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9