Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent for a link to \\192.168.0.2\C$\file.pdf without user interaction.
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Pdf-xchange
Pdf-xchange pdf-xchange Editor |
|
CPEs | cpe:2.3:a:pdf-xchange:pdf-xchange_editor:*:*:*:*:*:*:*:* | |
Vendors & Products |
Tracker-software
Tracker-software pdf-xchange Editor |
Pdf-xchange
Pdf-xchange pdf-xchange Editor |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-10-10T23:52:06
Updated: 2024-08-05T01:40:15.799Z
Reserved: 2019-10-10T00:00:00
Link: CVE-2019-17497
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-10-11T00:15:10.537
Modified: 2024-11-27T20:11:45.410
Link: CVE-2019-17497
Redhat
No data.