2 matches found
Gonitro Nitro Pro Integer Overflow (CVE-2020-6092)
An integer overflow vulnerability exists in Gonitro Nitro Pro. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2020-6092
Nitro Pro 13.9.1.155 is affected by a code execution vulnerability tied to parsing of /Pattern objects in PDFs. The underlying issue is an integer overflow in the handling of the Pattern bounding box (/BBox), which can be triggered by crafted PDF patterns and may lead to arbitrary code execution....