CVE-2013-0732: Buffer Overflow
Published Mar 27, 2014
·Updated
Heap-based buffer overflow in PDFCore8.dll in Nuance PDF Reader before 8.1 allows remote attackers to execute arbitrary code via crafted font table directory values in a TTF file, related to naming table entries.
Affected Software
2 affected components
Nuance PDF Reader<=7.0
Nuance PDF Reader=6.0
Event History
Mar 27, 2014
CVE Published
via MITRE·04:00 PM
Data Sourced
via MITRE·04:00 PM
Description
Data Sourced
via NVD·04:55 PM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2013-0732?
CVE-2013-0732 has been classified with a high severity due to its potential for remote code execution.
2
How do I fix CVE-2013-0732?
To fix CVE-2013-0732, you should upgrade to Nuance PDF Reader version 8.1 or later.
3
What types of attacks are possible with CVE-2013-0732?
CVE-2013-0732 allows remote attackers to execute arbitrary code through specially crafted TTF files.
4
Which versions of Nuance PDF Reader are affected by CVE-2013-0732?
CVE-2013-0732 affects Nuance PDF Reader versions prior to 8.1, including version 6.0 and below.
5
Is there a workaround for CVE-2013-0732?
There are no official workarounds for CVE-2013-0732; upgrading to a secure version is recommended.