Talos is disclosing a vulnerability that has been identified in Iceni Infix PDF Editor that could lead to arbitrary code execution on affected hosts. This vulnerability manifests in a way that could be exploited if a user opens a specifically crafted PDF file that triggers this flaw. Talos has coordinated with Iceni to ensure relevant details regarding the vulnerability have been shared. Iceni has developed a software update that addresses this vulnerability. The most likely form of attack would be in a social engineering scenario where a user receives an email containing a malicious PDF that exploits the vulnerability.”]
Source: https://blog.talosintelligence.com/2017/07/iceni-infix-pdf.html