Foxit Reader 4.1.1 - Stack Overflow

2010-11-13T00:00:00
ID EXPLOITPACK:AEB5926670DDEE8251647C2B7FF5A203
Type exploitpack
Reporter dookie
Modified 2010-11-13T00:00:00

Description

Foxit Reader 4.1.1 - Stack Overflow

                                        
                                            Foxit Reader 4.1.1 is subject to a stack overflow vulnerability when parsing overly long unicode titles resulting in a SEH overwrite.
The included PoC results in a SEH overwrite. The exception must be passed twice in order to reach the overwritten handler.
This vulnerability was reported to the vendor and was patched in Foxit Reader 4.2.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/15514.pdf (foxit_411_poc.pdf)