Release date: 2012-04-23
Updated on: 2012-04-24
Affected Systems:
Sumatra PDF 2.0.1
Description:
--------------------------------------------------------------------------------
Bugtraq id: 53196
Sumatra PDF is a PDF, CHM, XPS, DjVu, CBZ, and CBR reader on Windows.
Sumatra PDF has multiple memory corruption vulnerabilities in the implementation of malformed. chm and. mobi files. Attackers can exploit these vulnerabilities to execute arbitrary code.
<* Source: Carlo Di Dato
Link: http://code.google.com/p/sumatrapdf/issues/detail? Id = 1906
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Sumatra PDF
-----------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://blog.kowalczyk.info/software/sumatrapdf/index.html