npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to JBIG2Decode CNxJBIG2DecodeStream Heap Corruption at npdf!CAPPDAnnotHandlerUtils::create_popup_for_markup+0x12fbe via a crafted PDF document.
References
Link | Resource |
---|---|
https://github.com/nafiez/nafiez.github.io/blob/master/_posts/2020-03-05-fuzzing-heap-corruption-nitro-pdf-vulnerability.md | Exploit Third Party Advisory |
https://nafiez.github.io/security/vulnerability/corruption/fuzzing/2020/03/05/fuzzing-heap-corruption-nitro-pdf-vulnerability.html | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-08T21:46:15
Updated: 2020-03-08T21:46:15
Reserved: 2020-03-08T00:00:00
Link: CVE-2020-10223
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-03-08T23:15:11.020
Modified: 2020-03-09T18:09:21.153
Link: CVE-2020-10223
JSON object: View
Redhat Information
No data.
CWE