A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing a launch action. An attacker can leverage this to gain remote code execution.
CPE | Name | Operator | Version |
---|---|---|---|
foxit_pdf_sdk_activex | le | 5.5.0 |