mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
1009 B
1009 B
CVE-2019-5030
Description
A buffer overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro MR1 (7,0,2019,0220). While parsing a document text info container, the TxMasterStyleAtom::parse function is incorrectly checking the bounds corresponding to the number of style levels, causing a vtable pointer to be overwritten, which leads to code execution.
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0792
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0792
Github
No PoCs found on GitHub currently.