PDF Form Filling and Flattening Tool Field Name Overflow
Local Access Required,
Remote / Network Access
Loss of Integrity
A overflow exists in PDF Form Filling and Flattening Tool. The PDF Form Filling and Flattening Tool fails to copy form field names to a 256 byte fixed length buffer resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitary code execution resulting in a loss of integrity.
Upgrade to version 220.127.116.11 (released on 2006-05-10) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.