Adobe Acrobat and Reader Memory Misreference Vulnerability (CNVD-2019-09059)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat and Reader have a memory misreference vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20716)

Foxit PDF Reader is China's Foxit Foxit Software Corporation of a PDF document reader. JavaScript engine is one of the JavaScript scripting engine. A remote code execution vulnerability exists in the JavaScript engine in Foxit PDF Reader. A remote attacker can exploit this vulnerability to execut...

Foxit PDF Reader Javascript Optional Content Group Remote Code Execution Vulnerability

Summary An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to...

Adobe Acrobat and Reader Out-of-Bounds Read Vulnerability (CNVD-2018-13528)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat and Reader have an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to obtain information...

Adobe Acrobat/Reader Buffer Overflow Vulnerability (CNVD-2018-10996)

Adobe Acrobat and Reader are the United States of America Audobee Adobe company's products. The former is a set of PDF file editing and conversion tools, the latter is a set of PDF document reading software. Adobe Acrobat and Reader buffer overflow vulnerability exists. Remote attackers can use t...

MuPDF Denial of Service Vulnerability (CNVD-2018-10366)

Artifex MuPDF is a free, lightweight PDF reader from Artifex Software. A security vulnerability exists in Artifex MuPDF 1.12.0 and earlier versions. An attacker can exploit this vulnerability with specially crafted files to cause a denial of service crash or affect program flow...

Adobe Acrobat/Reader Arbitrary Code Execution Vulnerability

Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat is a PDF editing software developed by Adobe. An arbitrary code execution vulnerability exists in Adobe Acrobat/Reader. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Memory Misreference Vulnerability (CNVD-2018-10466)

Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat is a PDF editing software developed by Adobe. A memory misreference vulnerability exists in Adobe Acrobat/Reader. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Memory Misreference Vulnerability (CNVD-2018-10460)

Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat is a PDF editing software developed by Adobe. Adobe Acrobat/Reader memory misreference vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Foxit PDF Reader JavaScript Memory Misreference Vulnerability

Foxit PDF Reader is China's Foxit Foxit Software Corporation of a PDF document reader. JavaScript engine is one of the JavaScript scripting engine. A memory misreference vulnerability exists in the JavaScript engine in Foxit PDF Reader version 8.3.2.25013. An attacker can exploit this vulnerabili...

Adobe Acrobat and Reader Memory Corruption Vulnerability (CNVD-2017-22741)

Adobe Acrobat and Reader are the United States of America Audobee Adobe company's products. The former is a set of PDF file editing and conversion tools, the latter is a set of PDF document reading software. Adobe Acrobat and Reader memory corruption vulnerabilities, attackers can control the...

WPS has an out-of-bounds access vulnerability

WPS is a free office software. A memory out-of-bounds access exists in the WPS docreader module. The vulnerability stems from a miscalculation of the buffer address length. An attacker can exploit this vulnerability to obtain sensitive information...

Memory out-of-bounds access vulnerability in WPS text docreader module (CNVD-2017-06211)

WPS is an office software. A memory out-of-bounds access vulnerability exists in the WPS text docreader module. The vulnerability is caused due to failure to validate address information effectively and can be exploited by an attacker to obtain sensitive information...

Artifex MuPDF Denial of Service Vulnerability

Artifex MuPDF is a lightweight PDF reader from Artifex Software. A denial of service vulnerability exists in Artifex MuPDF. An attacker can exploit this vulnerability to cause a denial of service...

Office Document Reader for iOS has multiple vulnerabilities

Office Document Reader for iOS is a set of Office document reader software based on iOS system. Cross-site request forgery vulnerabilities and HTML injection vulnerabilities exist in Office Document Reader for iOS 5.1.13 and earlier versions. These vulnerabilities can be exploited by attackers to...

Office Document Reader 5.1.13 XSS / CSRF

Hello list! Happy New Year! There are multiple vulnerabilities in Office Document Reader for iOS. There are Cross-Site Scripting and Cross-Site Request Forgery vulnerabilities. Earlier I've informed developer of Office Document Reader about this and other his software. -------------------------...

Briefcase 4.0 iOS - Code Exec & File Include Vulnerability

Document Title: =============== Briefcase 4.0 iOS - Code Exec & File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1319 Release Date: ============= 2014-09-11 Vulnerability Laboratory ID VL-ID: ====================================...

Office 2 iPhone XLS Denial-of-Service

No description provided by source. I wrote a fuzzer dumb fuzzer and used a sample from http://www.ccp14.ac.uk/ccp/web-mirrors/bca-spreadsheets/scanplot101.xls which I randomly found on the internet. I mutated the data and tested roughly 1000 cases on several Document Reader Applications for iPhon...

Office 2 iPhone XLS Denial of Service

Exploit for hardware platform in category dos / poc ===================================== Office 2 iPhone XLS Denial of Service ===================================== I wrote a fuzzer "dumb fuzzer" and used a sample from http://www.inj3ct0r.com/sploits/12662.xls which I randomly found on the...

Office^2 iPhone - .XLS Denial of Service

Office^2 iPhone - .XLS Denial of Service I wrote a fuzzer "dumb fuzzer" and used a sample from http://www.ccp14.ac.uk/ccp/web-mirrors/bca-spreadsheets/scanplot101.xls which I randomly found on the internet. I mutated the data and tested roughly 1000 cases on several Document Reader Applications f...