Chrome 53 Fixes Address Spoofing Vulnerability, 32 Other Bugs

Google continued its onslaught of summer Chrome patches Wednesday when it pushed out version 53 of the browser, fixing 33 bugs, half of which were rated “high” severity by the company. Google paid at least $56,500 in rewards to researchers who discovered vulnerabilities in the browser this time...

MuPDF Denial of Service Vulnerability

MuPDF is a PDF format analyzer used to read PDF files and create Fitz tree diagrams. MuPDF suffers from a denial of service vulnerability that can be exploited by an attacker to crash an affected application, resulting in a denial of service...

Memory Corruption Vulnerability in Multiple Adobe Products (CNVD-2016-04966)

Adobe Reader, etc. are the United States of America Auduby Adobe company's products. Adobe Reader is a free PDF file reader; Acrobat is a PDF file editing and conversion tools; Acrobat Reader DC is a set of tools for viewing, printing and annotating PDF.Classic and Continuous are the two update...

Microsoft Windows PDF Library Information Disclosure (MS16-080: CVE-2016-3201)

An out of bound memory access vulnerability was discovered within Microsoft Edge PDF reader and Windows PDF Library. The vulnerability is due to an error in parsing a malformed PDF document. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted PDF file...

Foxit PDF Reader 1.0.1.0925 - kdu_core::kdu_codestream::get_subsampling Memory Corruption

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=743 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the...

Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator Invalid Read

Foxit PDF Reader 1.0.1.0925 - CFXWideString::operator Invalid Read Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=745 We have identified the following crash due to an invalid read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF...

Foxit PDF Reader 1.0.1.0925 - kdu_core::kdu_codestream::get_subsampling Memory Corruption

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=743 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the following way: $ DISPLAY=:1 FoxitReader...

Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentParser Heap Memory Corruption

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=741 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the following way: $ MALLOCCHECK=3 DISPLAY=:1 FoxitRead...

Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-Bounds Read

Foxit PDF Reader 1.0.1.0925 - CPDFDIBSource::TranslateScanline24bpp Out-of-Bounds Read Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=744 We have identified the following crash due to an out-of-bounds read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started wi...

Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-Bounds Read

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=744 We have identified the following crash due to an out-of-bounds read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the...

Foxit PDF Reader 1.0.1.0925 - kdu_core::kdu_codestream::get_subsampling Memory Corruption

Foxit PDF Reader 1.0.1.0925 - kducore::kducodestream::getsubsampling Memory Corruption Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=743 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with ...

Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentParser Heap Based Memory

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=741 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the...

Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=745 We have identified the following crash due to an invalid read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the...

Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Corruption

Foxit PDF Reader 1.0.1.0925 - CFXBaseSegmentedArray::IterateIndex Memory Corruption Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=742 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a...

Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Corruption

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=742 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the...

Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentParser Heap Memory Corruption

Foxit PDF Reader 1.0.1.0925 - CPDFStreamContentParser::CPDFStreamContentParser Heap Memory Corruption Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=741 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, whe...

Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=745 We have identified the following crash due to an invalid read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the following way: $ DISPLAY=:1 FoxitReader...

Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Corruption

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=742 We have identified the following memory corruption vulnerability in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the following way: $ DISPLAY=:1 FoxitReader...

Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-Bounds Read

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=744 We have identified the following crash due to an out-of-bounds read in Foxit PDF Reader version 1.0.1.0925 for Linux 64-bit, when started with a specially crafted PDF file in the following way: $ MALLOCCHECK=3 DISPLAY=:1...

Attacks on SWIFT Banking System Benefit From Insider Knowledge

ARCHIVED STORY Attacks on SWIFT Banking System Benefit From Insider Knowledge By Trellix · May 20, 2016 In recent months, we’ve seen headlines about the compromise of a bank in Bangladesh from which cybercriminals attempted to steal US$951 million. The malware they used was able to manipulate and...