Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5324

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-5324
Last Modified 09 Oct 2012 12:00:00
Published 08 Oct 2012 04:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5324

Summary

Multiple buffer overflows in the Pdf Printer Preferences ActiveX Control in pdfxctrl.dll in Tracker Software PDF-XChange 3.60.0128 allow remote attackers to excute arbitrary code via a long string in the (1) sub_path parameter to the StoreInRegistry function or (2) sub_key parameter to the InitFromRegistry function.

Vulnerable Systems

Application

  • Tracker-software Pdf-xchange 3.60.0128


References

XF - pdfxchange-activex-buffer-overflow(72774)

MISC - http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5067.php

BID - 51712

EXPLOIT-DB - 18427


Last Updated: 27 May 2016 11:00:54