CVE-2019-5019 - A heap-based overflow vulnerability exists in the PowerPoint document conversion function of Rainbow

CVE-2019-5019

Summary

A heap-based overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro R1 (7,0,2018,1113). While parsing Document Summary Property Set stream, the getSummaryInformation function is incorrectly checking the correlation between size and the number of properties in PropertySet packets, causing an out-of-bounds write that leads to heap corruption and consequent code execution.

References

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0780

Vulnerable Configurations

cpe:2.3:a:rainbowpdf:office_server_document_converter:7.0:r1:*:*:*:*:*:*
cpe:2.3:a:rainbowpdf:office_server_document_converter:7.0:r1:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 13-06-2022 - 18:58)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

misc

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0780

Last major update

13-06-2022 - 18:58

Published

07-03-2019 - 20:29

Last modified

13-06-2022 - 18:58