Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a stack variable to go out of scope, resulting in the application dereferencing a stale pointer. This can lead to code execution under the context of the application. An attacker can convince a user to open a document to trigger the vulnerability.
CVSS Information
N/A
Vulnerability Type
返回栈上的变量地址
Vulnerability Title
Nitro Software Nitro Pro 安全漏洞
Vulnerability Description
Nitro Software Nitro Pro是美国Nitro Software公司的一款PDF文档编辑器软件。该软件支持PDF文档编辑、PDF文档格式转换和PDF文档加密等功能。 Nitro Software Nitro Pro 的JavaScript实现中存在安全漏洞,攻击者可以诱使用户打开精心设计的文档以触发该漏洞,在应用程序上下文中执行代码
CVSS Information
N/A
Vulnerability Type
N/A