Lucene search
+L

2910 matches found

OSV
OSV
added 2018/10/02 9:29 p.m.7 views

CVE-2018-3959

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Author property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

7.8CVSS5.6AI score0.02361EPSS
Exploits0References2
OSV
OSV
added 2018/10/02 9:29 p.m.4 views

CVE-2018-3957

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Keywords property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

7.8CVSS5.6AI score0.02895EPSS
Exploits0References3
OSV
OSV
added 2018/10/02 9:29 p.m.7 views

CVE-2018-3960

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Producer property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

7.8CVSS5.6AI score0.02361EPSS
Exploits0References2
OSV
OSV
added 2018/10/02 9:29 p.m.3 views

CVE-2018-3958

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Subject property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

7.8CVSS5.6AI score0.02895EPSS
Exploits0References3
OSV
OSV
added 2018/10/02 9:29 p.m.3 views

CVE-2018-3962

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the CreationDate property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger...

7.3CVSS5.6AI score0.02497EPSS
Exploits0References3
NVD
NVD
added 2018/10/02 9:29 p.m.23 views

CVE-2018-3960

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Producer property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

8CVSS7.6AI score0.02361EPSS
Exploits0References2
Prion
Prion
added 2018/10/02 9:29 p.m.25 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Creator property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

6.8CVSS7.6AI score0.02361EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2018/10/02 9:29 p.m.24 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Producer property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

6.8CVSS7.6AI score0.02361EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2018/10/02 9:29 p.m.17 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Keywords property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

6.8CVSS7.6AI score0.02895EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2018/10/02 9:29 p.m.5 views

CVE-2018-3943

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

8.8CVSS5.8AI score0.02577EPSS
Exploits0References3
Prion
Prion
added 2018/10/02 9:29 p.m.19 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the CreationDate property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger...

6CVSS7.2AI score0.02497EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2018/10/02 9:0 p.m.80 views

CVE-2018-3962

Foxit PDF Reader (version 9.1.0.5096) is affected by a use-after-free in the JavaScript engine when accessing CreationDate on this.info. The vulnerability can be triggered when a user opens a malicious PDF file, and, if the browser plugin extension is enabled, by visiting a malicious site. The do...

8CVSS7.6AI score0.02497EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2018/10/02 9:0 p.m.76 views

CVE-2018-3961

CVE-2018-3961 is a use-after-free vulnerability in Foxit PDF Reader’s JavaScript engine (version 9.1.0.5096). The flaw occurs when accessing the Creator property of the this.info object, enabling potentially arbitrary code execution. Exploitation vectors described in the connected Talos write-up ...

8CVSS7.9AI score0.02361EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2018/10/02 9:0 p.m.66 views

CVE-2018-3959

CVE-2018-3959 affects Foxit PDF Reader 9.1.0.5096. It is a use-after-free in the JavaScript engine triggered when accessing the this.info.Author property, exploitable by tricking a user into opening a malicious PDF or via a browser plugin. Cisco Talos describes it as enabling remote code executio...

8CVSS7.9AI score0.02361EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2018/10/02 9:0 p.m.72 views

CVE-2018-3957

Foxit PDF Reader 9.1.0.5096 contains a use-after-free in the JavaScript engine triggered by accessing the this.info Keywords property. An attacker can exploit this by convincing a user to open a malicious PDF file; if the browser plugin extension is enabled, visiting a malicious site may also tri...

8CVSS7.9AI score0.02895EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2018/10/02 9:0 p.m.28 views

CVE-2018-3957

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Keywords property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

8CVSS8AI score0.02895EPSS
Exploits0References2
CVE
CVE
added 2018/10/02 9:0 p.m.69 views

CVE-2018-3960

CVE-2018-3960 is a use-after-free in Foxit PDF Reader’s JavaScript engine (version 9.1.0.5096). The vulnerability occurs when accessing the Producer property of the this.info object. Exploitation depends on social/drive-by user action: a user must open a specially crafted malicious PDF file, or, ...

8CVSS7.9AI score0.02361EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2018/10/02 12:0 a.m.8 views

PT-2018-16341 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free issue exists in the JavaScript engine. This can occur when accessing the Subject property of the this.info object. An attacker can trigger this by tricking a user into opening ...

8CVSS7.5AI score0.02895EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2018/10/02 12:0 a.m.4 views

PT-2018-16343 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free issue exists in the JavaScript engine. This can occur when accessing the Producer property of the this.info object. An attacker can trigger this issue by tricking a user into...

8CVSS7.5AI score0.02361EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2018/10/02 12:0 a.m.10 views

PT-2018-16345 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free issue exists in the JavaScript engine. This can occur when accessing the CreationDate property of the this.info object. An attacker can exploit this by tricking a user into...

8CVSS7.2AI score0.02497EPSS
Exploits0References4
Rows per page
Query Builder