Anvsoft PDFMate PDF Converter Pro memory corruption

Vulnerability

A local buffer overflow vulnerability exists in PDFMate PDF Converter Pro version 1.7.5.0. The flaw resides in the Convert_Pro.dll library located in the installation directory C:\Program Files\Anvsoft\PDFMate PDF Converter Professional. When the application converts an HTML file, the library processes user-supplied data without proper bounds checking, leading to memory corruption. The vulnerability is triggered by including a large Unicode string in the HTML template [1].

Exploitation

An attacker can exploit this vulnerability remotely by convincing a user to open a malicious HTML file with the affected software. No authentication is required, but user interaction is necessary. The attacker crafts an HTML file containing an oversized Unicode payload. When the user initiates a conversion operation (e.g., HTML to PDF), the Convert_Pro.dll processes the payload, overwriting registers and potentially hijacking execution flow [1].

Impact

Successful exploitation allows an attacker to corrupt memory and potentially execute arbitrary code in the context of the affected application. This could lead to full compromise of the local system, including data disclosure, modification, or denial of service. The CVSS score of 5.9 (Medium) reflects the need for user interaction and the local nature of the attack [1].

Mitigation

As of the publication date, no official patch or fixed version has been released by Anvsoft. Users are advised to exercise caution when opening HTML files from untrusted sources and to consider using alternative PDF conversion software. The vulnerability has been publicly disclosed, increasing the risk of exploitation [1].