CVE-2025-34106 Information

Jul 16, 2025 cve

Description

A buffer overflow vulnerability exists in PDF Shaper versions 3.5 and 3.6 when converting a crafted PDF file to an image using the ‘Convert PDF to Image’ functionality. An attacker can exploit this vulnerability by tricking a user into opening a maliciously crafted PDF file leading to arbitrary code execution under the context of the user. This vulnerability has been verified on Windows XP 7 8 and 10 platforms using the PDFTools.exe component.

Reference

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/shaper_pdf_bof.rb https://vulners.com/vulnerlab/VULNERABLE:1579 https://www.exploit-db.com/exploits/37760 https://www.pdfshaper.com/ https://www.vulncheck.com/advisories/pdf-shaper-buffer-overflow-via-convert-to-image-feature

CNNVD-202507-2025 (Published: 2025-07-15)

Share on:

CVE-2025-34106 Information

Description

Reference

Related CNNVD