3 matches found
Nitro Pro Heap Memory Corruption Vulnerability
Nitro Pro is a desktop product with full PDF creation and editing capabilities. A JBIG2Decode CNxJBIG2DecodeStream heap memory corruption vulnerability exists in npdf.dll in versions prior to Nitro Pro 13.13.2.242. An attacker can exploit this vulnerability via a specially crafted PDF document to...
Design/Logic Flaw
npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to JBIG2Decode CNxJBIG2DecodeStream Heap Corruption at npdf!CAPPDAnnotHandlerUtils::createpopupformarkup+0x12fbe via a crafted PDF document...
CVE-2020-10223
Summary: CVE-2020-10223 affects Nitro Pro’s npdf.dll. The vulnerability is a JBIG2Decode CNxJBIG2DecodeStream heap corruption triggered by a crafted PDF document, impacting versions prior to Nitro Pro 13.13.2.242. The precise vulnerable component is NPDF code path npdf!CAPPDAnnotHandlerUtils::cre...