Remote Code Execution Vulnerability in Kofax Power PDF Due to OXPS File Parsing Stack-Based Buffer Overflow
CVE-2023-51566

7.8HIGH

Key Information:

Vendor: Kofax
Status: Power PDF
Vendor: CVE Published:; 3 May 2024

Summary

A stack-based buffer overflow vulnerability exists in the OXPS file parsing feature of Kofax Power PDF. By failing to adequately validate the length of user-supplied data before copying it to a fixed-length stack-based buffer, the software allows remote attackers to exploit this flaw. Exploitation requires user interaction, as the target needs to open a malicious OXPS file or visit a web page that triggers the vulnerability. If successfully executed, the attacker can run arbitrary code within the context of the affected process, posing significant risks to system integrity and confidentiality. Users are advised to remain cautious about file sources and consider applying security updates to mitigate potential threats.

Affected Version(s)

Power PDF 5.0.0.57 (5.0.0.10.0.23307)

References

https://www.zerodayinitiative.com/advisories/ZDI-24-004/

x_research-advisory

https://docshield.kofax.com/PowerPDF/en_US/5.0.0-3uoz7ssq...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 3, 2024