PDF Shaper Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

A buffer overflow vulnerability has been identified in PDF Shaper versions 3.5 and 3.6. This vulnerability arises when the application converts a specially crafted PDF file to an image, using the 'Convert PDF to Image' feature. An attacker can exploit this issue by persuading a user to open the malicious PDF, which can lead to arbitrary code execution under the user's context. The vulnerability has been confirmed on Windows XP, 7, 8, and 10, through the PDFTools.exe component.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system, under the context of the user running PDF Shaper.

Reproduction

The vulnerability can be reproduced by using PDF Shaper versions 3.5 or 3.6 on a Windows XP, 7, 8, or 10 system. The buffer overflow is triggered by opening a maliciously crafted PDF file with the application, specifically using the 'Convert PDF to Image' functionality. This exploitation can be automated with a Metasploit module that creates the crafted PDF file and exploits the buffer overflow to execute arbitrary code.