VeryPDF docPrint Pro Buffer Overflow Vulnerability in 'Add URL' Field Allowing Arbitrary Code Execution

A local buffer overflow vulnerability has been identified in VeryPDF docPrint Pro version 8.0. The issue arises in the 'Add URL' input field, where improper handling of input allows attackers to overwrite memory. This vulnerability can be exploited by crafting a malicious payload that triggers a structured exception handler (SEH) overwrite, enabling the execution of arbitrary code and potentially leading to remote system access.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system, with the executed code running in the context of the user who launched docPrint Pro.

Reproduction

To reproduce this vulnerability, first compile the provided Python script, which creates a payload designed to exploit the buffer overflow. After running the script, the generated payload will be copied to the clipboard. Then, open docPrint Pro 8.0 and navigate to the 'Add URL' option. Paste the clipboard content into the URL field and click 'OK'. This action will trigger the buffer overflow by overwriting the structured exception handler, allowing the injected shellcode to be executed.