CVE-2019-17497
MEDIUMPDF-XChange Editor < 8.0.330.0 - NTLM SSO Hash Theft via Crafted FDF/XFDF Files
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2019-17497. PoCs published by JM-Lemmi.
AI-analyzed exploit summary This repository provides a technical summary of CVE-2019-17497, an NTLM SSO hash theft vulnerability in PDF-XChange Editor. It references an external writeup and mentions recreated PoC files, but does not include functional exploit code.
Description
Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent for a link to \\192.168.0.2\C$\file.pdf without user interaction.
Exploits (1)
This repository provides a technical summary of CVE-2019-17497, an NTLM SSO hash theft vulnerability in PDF-XChange Editor. It references an external writeup and mentions recreated PoC files, but does not include functional exploit code.
References (1)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N