top of page
perceptive_background_267k.jpg

PDF Explorer 1.5.66.2 contains a structured exception handler (SEH) overflow vulnerability that allows local attackers to execute arbitrary code by overwriting …

Published:

25 maart 2026 om 23:00:00

Alert date:

26 maart 2026 om 16:11:29

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications

PDF Explorer version 1.5.66.2 contains a structured exception handler (SEH) overflow vulnerability that enables local attackers to execute arbitrary code. The vulnerability is triggered when the Custom fields settings dialog processes malicious input in the Label field. Attackers can exploit this by crafting payloads containing buffer overflow data, NSEH jumps, and ROP gadget chains. The vulnerability allows overwriting SEH records with malicious data, leading to code execution. This represents a significant local privilege escalation risk for systems running the affected PDF Explorer version.

Technical details

Mitigation steps:

Affected products:

PDF Explorer

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2018-25217
http://www.rttsoftware.com/
https://www.exploit-db.com/exploits/46016
https://www.rttsoftware.com/files/PDFExplorerTrialSetup.zip
https://www.vulncheck.com/advisories/pdf-explorer-structured-exception-handler-local-code-execution

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page