Nitro PDF Pro NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

A NULL pointer dereference vulnerability has been identified in Nitro PDF Pro for Windows, version 14.41.1.4. This vulnerability allows attackers to cause a denial-of-service condition by exploiting a crafted XFA packet. When a PDF file containing an empty XFA array is opened, the application crashes. The issue occurs because Nitro PDF Pro's XFA processing routine is triggered despite the absence of valid XFA content, leading to the NULL pointer dereference and causing the application to terminate abruptly.

Impact

Exploitation of this vulnerability causes Nitro PDF Pro to crash immediately upon opening a malicious PDF file, creating a denial-of-service condition.

Reproduction

To reproduce this vulnerability, create a PDF file that includes an empty XFA array within the AcroForm. When this file is opened in Nitro PDF Pro version 14.41.1.4, the application will crash due to a NULL pointer dereference. The vulnerability can be triggered by simply opening the crafted PDF file with the affected application.

Remediation

Users can update to Nitro PDF Pro version 14.41.1.5 or later, where this vulnerability has been patched.