Advertisement
Top
image credit: pixabay

Code Execution Vulnerabilities Found in Aspose PDF Processing Product

September 18, 2019

Via: Security Week
Category:

Australia-based Aspose provides APIs for manipulating a wide range of file formats, including Word, PDF, Excel, PowerPoint, Outlook, and OneNote files. Aspose says on its website that its products are used by over 17,500 customers across 114 countries, including 75 percent of Fortune 100 companies.

Talos researchers discovered that Aspose.PDF, which is designed for manipulating and parsing PDF files, is affected by three vulnerabilities that can be exploited to execute arbitrary code by getting the targeted user to open a specially crafted PDF file with the affected application.

Read More on Security Week

RELATED PUBLICATIONS

OpenAI’s GPT-4 can exploit real vulnerabilities by reading security advisories
Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector
Google Patches Exploited Pixel Vulnerabilities

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!