Published: 28/02/2018 Updated: 23/03/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The Pictview image processing library embedded in the ActivePDF toolkit up to and including 2018.1.0.18321 is prone to multiple out of bounds write and sign errors, allowing a remote malicious user to execute arbitrary code on vulnerable applications using the ActivePDF Toolkit to process untrusted images.

Vulnerable Product	Search on Vulmon	Subscribe to Product
activepdf activepdf toolkit

ActivePDF Toolkit versions prior to 810 suffer from multiple code execution vulnerabilities ...

ActivePDF Toolkit < 810 multiple RCE Introduction ============ The ActivePDF Toolkit is a Windows library which enhances business processes to stamp, stitch, merge, form-fill, add digital signatures, barcodes to PDF Both NET and native APIs are provided Amongst many other operations, this library can be used by applications to transform i ...

CWE-787 http://seclists.org/fulldisclosure/2018/Feb/74 https://www.exploit-db.com/exploits/44251/https://nvd.nist.gov https://packetstormsecurity.com/files/146599/ActivePDF-Toolkit-Code-Execution.html https://www.exploit-db.com/exploits/44251/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-7264

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect