![]() ![]() : Vendor replied that a patch was released on which fixes : Vendor replies that they are working on a hotfix : Contaced vendor again to inquire status : Contacting vendor through : Vendor replies Nitro Pro 8.5.0.26 older versions may also be affected The same folder as a *.pdf or *.fdf file. The vulnerable application to open a file from a remote WebDAV or SMB shareĪffected DLL: bcgcbproresen.dll (tested on Windows 8)Ĭreate a DLL with desired code, name it bcgcbproresen.dll and place it within An attacker can exploit this issue by enticing a legitimate user to use Nitro Pro is prone to a vulnerability that lets attackers execute arbitraryĬode. Source: Vulnerability overview/description: Offices in Melbourne, Australia and Nitra Slovakia. Staff, millions of people worldwide use Nitro Products - like Nitro Pro andĪustralian-founded in 2005, we're headquartered in downtown San Francisco with Vulnerable version: 8.5.0.26 older versions may also be affectedįrom companies like Boeing® and IBM® to small home businesses with just a few Title: Nitro Pro 8 - Insecure Library Loading Allows Remote Code SEC Consult Vulnerability Lab Security Advisory
0 Comments
Leave a Reply. |