An exploitable Use After Free... CVE-2019-5047

6.8 AV AC AU C I A
发布: 2019-01-04
修订: 2020-06-01

An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability.