CVE-2024-28699

Vulnerability

Overview

A buffer overflow vulnerability has been identified in pdf2json version 0.70. The issue resides within the GString::copy() and ImgOutputDev::ImgOutputDev functions, leading to memory corruption that can be exploited by a local attacker to execute arbitrary code [1]. The vulnerability was disclosed on the project's GitHub issue tracker, where a proof-of-concept (PoC) and build configuration for testing with AddressSanitizer were provided [1].

Exploitation

Details

The attack vector is local, requiring the attacker to supply a malicious PDF file that, when processed by pdf2json, triggers the buffer overflow in the affected functions. No authentication or special privileges are needed beyond the ability to invoke the pdf2json binary on the target system [1][2]. The PoC demonstrates overwriting memory, which could be leveraged to hijack control flow [1].

Impact

Successful exploitation allows an attacker to execute arbitrary code with the privileges of the user running pdf2json. This could lead to full compromise of the affected system, including data theft, installation of malware, or further lateral movement within a network. The CVSS v3 base score is 7.8 (High), reflecting the high impact on confidentiality, integrity, and availability [1].

Mitigation

As of the advisory, no official patch has been released; the project appears to be unmaintained. Users are advised to avoid processing untrusted PDF files with pdf2json version 0.70 and consider migrating to alternative PDF processing libraries. There is no evidence this CVE is included in CISA's Known Exploited Vulnerabilities catalog.