%PDF-1.4
%
1 0 obj
<<
/Author (PHOENIX CONTACT GmbH & Co. KG)
/CreationDate (D:20200224093817+01'00')
/Creator (PDF-XChange Office Addin)
/CreatorTool (PDF-XChange Standard \(8.0 build 333\) [GDI] [Windows 10 Professional x64 \(Build 17763\)])
/Keywords (VDE-2019-014\r\nCVE-2019-12869 \(ZDI-CAN-7781\)\r\nCVE-2019-12870 \(ZDI-CAN-7784\)\r\nCVE-2019-12871 \(ZDI-CAN-7780, ZDI-CAN-7785, ZDI-CAN-7786\))
/ModDate (D:20200224094132+01'00')
/Producer (PDF-XChange Standard \(8.0 build 333\) [GDI] [Windows 10 Professional x64 \(Build 17763\)])
/Subject (Phoenix Contact Automationworx BCP File Parsing vulnerabilites)
/Title (Security Advisory for Automation Worx Software Suite Update 2020-02-24)
>>
endobj
2 0 obj
<<
/Metadata 3 0 R
/Pages 4 0 R
/Type /Catalog
>>
endobj
3 0 obj
<<
/Length 3814
/Subtype /XML
/Type /Metadata
>>
stream
application/pdf
PHOENIX CONTACT GmbH & Co. KG
Security Advisory for Automation Worx Software Suite – Update 2020-02-24
Phoenix Contact Automationworx BCP File Parsing vulnerabilites
uuid:8089bcfc-7ff0-4170-9332-319422b6c81b
uuid:0b382f81-1f1c-4439-99c0-74bf25a1dae0
PDF-XChange Office Addin
2020-02-24T09:38:17+01:00
2020-02-24T09:41:32+01:00
PDF-XChange Standard (8.0 build 333) [GDI] [Windows 10 Professional x64 (Build 17763)]
PDF-XChange Standard (8.0 build 333) [GDI] [Windows 10 Professional x64 (Build 17763)]
VDE-2019-014
CVE-2019-12869 (ZDI-CAN-7781)
CVE-2019-12870 (ZDI-CAN-7784)
CVE-2019-12871 (ZDI-CAN-7780, ZDI-CAN-7785, ZDI-CAN-7786)
endstream
endobj
4 0 obj
<<
/Count 2
/Kids [5 0 R 6 0 R]
/Type /Pages
>>
endobj
5 0 obj
<<
/Contents 7 0 R
/MediaBox [0 0 595.2 841.92]
/Parent 4 0 R
/Resources <<
/Font <<
/F0 8 0 R
/F1 9 0 R
/F2 10 0 R
>>
/XObject <<
/Im0 11 0 R
>>
>>
/Type /Page
>>
endobj
6 0 obj
<<
/Annots [12 0 R]
/Contents 13 0 R
/MediaBox [0 0 595.2 841.92]
/Parent 4 0 R
/Resources <<
/Font <<
/F0 8 0 R
/F1 9 0 R
/F2 10 0 R
>>
/XObject <<
/Im0 14 0 R
>>
>>
/Type /Page
>>
endobj
7 0 obj
<<
/Filter /FlateDecode
/Length 2019
>>
stream
xڭWmoH_O 8]$MYȒWkHuRk4|H>C
g=K0Cq0FťeDpXlqfr=}4Ȁэi9q=fpeZ2076or}S
㊷ÓBp%H`ϹFA?+fI
EmUeR/P&$*9Ć|nJUKYLJ'!VMB >hhDh?FOˌtp ?d|/`|F&5Ȧc|Ňy|yGZm'0ߠ
p<"Zax2F|prdSxWaR.\Ac4od25Ҵ+LڦTT|}ѾUU|4Ia{Xr_)X<ܡ'coBB _O&Hx` Z B8xy6NƓG3MO=C'1:ƧE`z|Br9Iխv1-"~)^)ΏVbm}RXBc8O./9g+3x!3qʌs[2$cCrm2Ϸfضm~.A2jHNpu^`r՚ۏ~v(G""+,7v'Pl6u!s zp[\IVr#5E3n3uR˹G3B˪ش|1>x1
#q_g Ɂ۽!o#Y#y`ySa U~]:v8 %vHagґvxpb3ߚrg]"bJwu݆A-۪~!kU5v
fN۾/U}BfԊwyp̐O7z
_͎Q@b&w<<i22G-V[C8KO'}hqp%m-؉=i-\^ָ6azܲ#3e^M7A;ZU
UV0;>J
)aWؕ>oŲ5K:T<鄽I9ڠ# 7"V;fh)YѰ*$jJᚋJ#0ηiQ3T0?o{[E2_8P=_.VdĐx]^}(t@1'
0IS O@|WLK&3s
>Y^T3a& 5 EN':pjOJ8pdL͂&͎-=ԓX
5˗`S
V+l1v
=c56 z&j@VFV:f1Ax&UK[h3 ƯMTm:_|ic88 !
9t^/ӑjnv19W 8V3<9F)^%R~0nf|{`=-U{#j{)8 IX ǠU#/پ
t诵?)A:MY쨖R:-Z麄{tI:zYE'/ӊlSlPex_M{bHR^&
UP,\ g.YV,âQ~ˁ<1hp5 "@|"GpFbzh5o"(&
~n TfE]Ą \a~42/!].kLI
endstream
endobj
8 0 obj
<<
/BaseFont /ArialMT
/Encoding /WinAnsiEncoding
/FirstChar 32
/FontDescriptor 15 0 R
/LastChar 252
/Subtype /TrueType
/Type /Font
/Widths [278 0 0 0 0 0 667 0 333 333 0 584 278 333 278 278
556 556 556 556 556 556 556 556 556 556 278 0 0 0 0 0
1015 667 667 722 722 667 611 778 722 278 0 667 556 0 722 778
667 0 722 667 611 722 667 944 667 0 611 0 0 0 0 0
0 556 556 500 556 556 278 556 556 222 222 500 222 833 556 556
556 556 333 500 278 556 500 722 500 500 500 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 333 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 611
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 556]
>>
endobj
9 0 obj
<<
/BaseFont /Arial-BoldMT
/Encoding /WinAnsiEncoding
/FirstChar 32
/FontDescriptor 16 0 R
/LastChar 150
/Subtype /TrueType
/Type /Font
/Widths [278 0 0 0 0 0 0 0 0 0 0 0 0 333 0 278
556 0 556 0 556 0 0 0 0 0 333 0 0 0 0 0
0 722 0 722 722 0 611 0 0 278 0 0 0 833 0 0
0 0 722 667 611 722 667 944 0 0 0 0 0 0 0 0
0 556 611 556 611 556 333 611 0 278 0 556 278 889 611 611
611 0 389 556 333 611 556 778 556 556 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 0 0 0 0 556]
>>
endobj
10 0 obj
<<
/BaseFont /ETDXCO+SymbolMT
/DescendantFonts [<<
/BaseFont /ETDXCO+SymbolMT
/CIDSystemInfo <<
/Ordering (Identity)
/Registry (PXCViewer)
/Supplement 0
>>
/DW 460
/FontDescriptor 17 0 R
/Subtype /CIDFontType2
/Type /Font
>>]
/Encoding /Identity-H
/Subtype /Type0
/ToUnicode 18 0 R
/Type /Font
>>
endobj
11 0 obj
<<
/BitsPerComponent 8
/ColorSpace /DeviceRGB
/Filter [/FlateDecode /DCTDecode]
/Height 129
/Length 26776
/Subtype /Image
/Width 2467
>>
stream
xTS]n@"QP@!*(MAHS1
Qi*k"@R"M:AzSzo{$[/{ι1nckg>sf2~ {/jjL p0N6֝066;a( tk7(l)ȉp;|DLNQI9eYagedv_vs2??Q͔ LL?_/&flwXXw~vp;*ζ&3ÈĝB糿ryA^>'DD(UzYHWQcb㒒SHM)'7/KAaQqeUuMm]}Cc{GgWwOo_:acH"3,L>\>;vl%֣l
7y|Db]B+<\ˍ_VFB/҇QpJfa:
0s1p11& W06u3p$3 !+s..h
?1 _7n4bW'q{@5a|K) A1hmܬ;d4~=~>%jxidY'ҕ½,7b7?d@/&0 `+(S6g29 ^d(@D'9u3 CVҳO.,89ґ@.4~du1 l>*prDZ#(\h~:kJ^iw}#_vs}NJl!@:SSV3I2!K*o
I(̚w| RuJR?'w04З(UjPc-F)<'s
?p4eV208[~V座,>XD`AͲr.bɏl[)m\455PcFٗCHAX?J&߲r sʚ6^KE9@6d |'{? Zf@
x\8v恣x9M7kʟw$l%N O n>GOQGY^
7ݞ-Q#/"ȕ`ד탾m}T(RA(BzyEsez}S M@&&XK*z얨xД _/S{$k%GR_Gv#hQ^te*Ɗoq,(7c\@ZeF[WOa8|ܞ͎b(燞]d?.6qdBwv|ʉLJ^OpN
`d6M@)YHr;LW^Ѿ 6薗_b0~Ϡ|25!h|Skm:K
+3SZ]"PrUڙEtČ&h~5)PZ(.^0~|Ms="cbZbcҤ$C#q`TԽ/=A6ꭂ62v|>!jSk,V
L2%rF5roc{w;cͷ0f]qeY+9^={9i'b[I kNoJ#| iڗ ޫ4%hL+x0
/6P0oI=6ۀ057|[COc*Ya#XI+W0S=V@-gthHGSuQJ! ,Xh94~'UBQ ?Fb?_nB67lBji8>Haq]!Yˀ;ҹt%a5(ȕdPYr? lL)
%hv\JďAR>tH> U?3?tOK`LFn@9YCh&ߟ=09j^Bgܕ"gwF=Uq|c^Y^1r>8DQɫ}*_!4̰"ߞ6&c''mI{|HɟM2=ՖWܿi}va~Ӌ "SoCQsķuC
PuM6_61];sqoÞWO(WNk\TE浨{F_ Pq3Яokj
,?ٹqIu
0Q?ꛚDrG$.\47Kk9?'v˛Z&,,D4BW@_ؑl~GoW݃H嘦%BuY}v݃;O/Ŝ=5%&M3維 ,) cW!=7,pw{\HH`g {6moVO&Xx[\ ?
KQhhl}
fyH;b!_Q>-;RΊ4ZD*7W+N-OS((;eԅԶF":Y1 e}}KɔB@$KWco;p֜'<}|]ieZȘKe#W&*ΫV"WndqMTref%?2v&ƛj"s0-U@V%5}2Um% ֤j珗/$g!;!ݯZL,+"b{R;}-vzr|u.?K*Znw:бLPj'M'([YnGSV16Q!\ނ{1 \Ŀ.^2~/iڐ%Qrhͱ
1k`t(? {CW3(UrAQ,Vp