Home page logo

bugtraq logo Bugtraq mailing list archives

Re: Perfect PDF products distributed with vulnerable MSVC++ libraries
From: Jeffrey Walton <noloader () gmail com>
Date: Sat, 25 Jun 2011 23:40:06 -0400

On Tue, Jun 21, 2011 at 7:22 AM, Brad Hards <bradh () frogmouth net> wrote:
On Sunday 19 June 2011 11:37:33 Stefan Kanthak wrote:
soft Xpansion <www.soft-xpansion.com> distributes their (freeware)
products "Perfect PDF 7 Master" and "Perfect PDF 7 Reader" (the
current files are dated 2011-05-10) with OUTDATED and VULNERABLE
Visual C++ 2008 runtime libraries VCRedist_x86.exe/VCRedist_x64.exe
version 9.0.30729.17 of 2008-08-08.

These libraries have been updated since then at least twice due to
vulnerabilities, see
Did you check if these vulnerabilities be exploited via this product? I'm not
suggesting that its OK to distribute outdated libs, just to understand the
risk a little more.
You need to worry about more than just this product. If an attacker
launches a vulnerable executable for which he has a vector (not
necessarily this product), all he/she needs to do is set the current
directory to the location of the flawed DLL. I believe it would
succeed because so few actually set SafeDllSearchMode to enabled (from
my auditing experience). See


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]