PDF-XChange Viewer < 2.5 Build 208 JPEG Processing Buffer Overflow
High Nessus Plugin ID 65549
SynopsisThe remote Windows host has an application that is affected by a buffer overflow vulnerability.
DescriptionA version of PDF-XChange Viewer prior to 2.5 Build 208 is installed on the remote host. As such, it contains a flaw in the JPEG stream parsing feature that is triggered when the Define Huffman Table header of a JPEG image is not properly validated when embedded in a PDF document. An attacker could exploit this issue by tricking a user into opening a malicious PDF document, resulting in denial of service or arbitrary code execution.
SolutionUpgrade to PDF-XChange Viewer 2.5 Build 208 or later.