The vulnerability of the PDF-XChange PDF document viewing and editing program lies in the fact that operations outside the buffer are allowed in memory when processing Collab objects, allowing an attacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the fact that operations may go beyond the buffer in memory when processing Collab objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware fil...