Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain “/Type /Action /S /Launch” sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified “/Launch /Action” sequence, a related issue to CVE-2009-0836.
CPE | Name | Operator | Version |
---|---|---|---|
foxit_reader | eq | 3.1.1.0928 | |
foxit_reader | eq | 3.1.1.0901 | |
foxit_reader | eq | 2.3 | |
foxit_reader | eq | 3.1.3.1030 | |
foxit_reader | eq | 3.1.0.0824 | |
foxit_reader | le | 3.2.0.0303 | |
foxit_reader | eq | 3.0 |