Artifex MuPDF Uncontrolled Search Path Vulnerability in Windows

A vulnerability exists in Artifex MuPDF versions prior to 1.26.2 on Windows. The issue arises in the 'get_system_dpi' function within 'platform/x11/win_main.c', where the application fails to properly restrict the directories from which DLLs can be loaded. This flaw allows attacker-controlled DLLs to be loaded instead of legitimate system libraries, potentially leading to arbitrary code execution in the context of the MuPDF process. The vulnerability requires local access to exploit and is considered to have high complexity.

Impact

Exploitation of this vulnerability could allow a local attacker to execute arbitrary code within the MuPDF process, with the potential for that code to access or modify system resources or data, depending on the nature of the executed code.

Remediation

Users are advised to upgrade to MuPDF version 1.26.2, which is available for download from the MuPDF website. The specific patch that addresses this vulnerability can be found in the official MuPDF Git repository.