Lucene search
HistoryJun 24, 2011 - 8:55 p.m.
CVE-2011-1908
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.04 Low
EPSS
Percentile
92.1%
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document.
Affected configurations
Node
foxitsoftwarefoxit_readerRange≤4.0
ORfoxitsoftwarefoxit_readerMatch2.0
ORfoxitsoftwarefoxit_readerMatch2.2
ORfoxitsoftwarefoxit_readerMatch2.3
ORfoxitsoftwarefoxit_readerMatch3.0
ORfoxitsoftwarefoxit_readerMatch3.1
ORfoxitsoftwarefoxit_readerMatch3.1.1
ORfoxitsoftwarefoxit_readerMatch3.1.3
ORfoxitsoftwarefoxit_readerMatch3.1.4
ORfoxitsoftwarefoxit_readerMatch3.2
ORfoxitsoftwarefoxit_readerMatch3.2.1
ORfoxitsoftwarefoxit_readerMatch3.3.1
Related
openvas
openvas
Foxit Reader Freetype Engine Integer Overflow Vulnerability
2011-07-01 00:00:00
Foxit Reader Freetype Engine Integer Overflow Vulnerability
2011-07-01 00:00:00
nessus
nessus
Foxit Reader < 4.0.0.0619 FreeType Engine RCE
2011-06-24 00:00:00
cve
cve
CVE-2011-1908
2011-06-24 20:55:03
prion
prion
Integer overflow
2011-06-24 20:55:00
msvr
msvr
Vulnerability in Foxit Reader Could Allow Remote Code Execution
2011-06-21 00:00:00
seebug
seebug
Foxit Reader Freetype引擎远程整数溢出漏洞
2011-06-25 00:00:00
cvelist
cvelist
CVE-2011-1908
2011-06-24 20:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.04 Low
EPSS
Percentile
92.1%
Related for NVD:CVE-2011-1908