CVE-2019-17497

Name of the Vulnerable Software and Affected Versions PDF-XChange Editor versions prior to 8.0.330.0

Description The issue allows for NTLM SSO hash theft using crafted FDF or XFDF files. This can occur when a link to a file, such as '192.168.0.2C$file.pdf', is accessed without user interaction, resulting in the transmission of an NTLM hash.

Recommendations For versions prior to 8.0.330.0, update to version 8.0.330.0 or later to resolve the issue. As a temporary workaround, consider restricting access to crafted FDF or XFDF files until the update is applied. Avoid using links to files that may trigger the transmission of NTLM hashes without user interaction.