Lucene search
Kaspersky LabKLA11125HistoryAug 22, 1970 - 12:00 a.m.
KLA11125 Multiple vulnerabilities in Foxit Reader
1970-08-2200:00:00
Kaspersky Lab
threats.kaspersky.com
21
Multiple buffer overflow vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities locally via specially designed .xps fileΒ to cause a denial of service or execute arbitrary code.
Technical details
This vulnerabilities are related to:
- βData from Faulting Address controls subsequent Write Address starting at frdvpr_drv!DrvQueryDriverInfo+0x000000000002c851.β;
- βData from Faulting Address controls subsequent Write Address starting at msvcrt!memmove+0x0000000000000158.β.
Original advisories
Related products
CVE list
Solution
Update to the latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Affected Products
- Foxit Reader version 8.3.2.25013
Related
openvas
openvas
cvelist
cvelist
CVE-2017-15771
2017-10-22 17:00:00
CVE-2017-15770
2017-10-22 17:00:00
cve
cve
CVE-2017-15771
2017-10-22 20:29:01
CVE-2017-15770
2017-10-22 20:29:01
nvd
nvd
CVE-2017-15770
2017-10-22 20:29:01
CVE-2017-15771
2017-10-22 20:29:01