Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent for a link to \\192.168.0.2\C$\file.pdf without user interaction.
History

Wed, 27 Nov 2024 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Pdf-xchange
Pdf-xchange pdf-xchange Editor
CPEs cpe:2.3:a:tracker-software:pdf-xchange_editor:*:*:*:*:*:*:*:* cpe:2.3:a:pdf-xchange:pdf-xchange_editor:*:*:*:*:*:*:*:*
Vendors & Products Tracker-software
Tracker-software pdf-xchange Editor
Pdf-xchange
Pdf-xchange pdf-xchange Editor

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-10-10T23:52:06

Updated: 2024-08-05T01:40:15.799Z

Reserved: 2019-10-10T00:00:00

Link: CVE-2019-17497

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-10-11T00:15:10.537

Modified: 2024-11-27T20:11:45.410

Link: CVE-2019-17497

cve-icon Redhat

No data.