A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when using the Open File action on a Field. An attacker can leverage this to gain remote code execution.
CPE | Name | Operator | Version |
---|---|---|---|
foxit_pdf_sdk_activex | le | 5.5.0 |