Vulnerability Details CVE-2012-5324
Multiple buffer overflows in the Pdf Printer Preferences ActiveX Control in pdfxctrl.dll in Tracker Software PDF-XChange 3.60.0128 allow remote attackers to execute arbitrary code via a long string in the (1) sub_path parameter to the StoreInRegistry function or (2) sub_key parameter to the InitFromRegistry function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.269
EPSS Ranking 96.1%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.exploit-db.com/exploits/18427
- http://www.securityfocus.com/bid/51712
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5067.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72774
- http://www.exploit-db.com/exploits/18427
- http://www.securityfocus.com/bid/51712
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5067.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72774
Products affected by CVE-2012-5324
-
cpe:2.3:a:tracker-software:pdf-xchange:3.60.0128