CVE-2019-19817

Affected software: Nitro Free PDF Reader 12.0.0.112. Component: JBIG2Decode in npdf.dll. Vulnerability: Out-of-Bounds Read via CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x2e8a triggered by crafted Unicode content. Impact (per CVSS): Availability impact HIGH; Confidentiality/Integrity NON...

CVE-2019-19817

The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x2e8a Out-of-Bounds Read via crafted Unicode content...

CVE-2019-19819

The CVE-2019-19819 issue affects Nitro Free PDF Reader 12.0.0.112, specifically the JBIG2Globals library (npdf.dll). A NULL Pointer Dereference in CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec can be triggered by crafted Unicode content, potentially causing a crash or denial of servic...

CVE-2019-19819

The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content...

CVE-2019-19818

The CVE-2019-19818 entry concerns Nitro Free PDF Reader 12.0.0.112, specifically the JBIG2Decode library in npdf.dll. The vulnerability is an Out-of-Bounds Read in CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0xa08a triggered by crafted Unicode content. Affected component: JBIG2Decode in np...

CVE-2019-19818

The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0xa08a Out-of-Bounds Read via crafted Unicode content...

Adobe Acrobat/Reader Memory Misreference Vulnerability (CNVD-2019-35614)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has a memory misreference vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Out-of-Bounds Read Vulnerability (CNVD-2019-35597)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to obtain information...

Adobe Acrobat/Reader Out-of-Bounds Write Vulnerability (CNVD-2019-35599)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has an out-of-bounds write vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Out-of-Bounds Write Vulnerability (CNVD-2019-35602)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has an out-of-bounds write vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Memory Misreference Vulnerability (CNVD-2019-35615)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has a memory misreference vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Acrobat/Reader Memory Misreference Vulnerability (CNVD-2019-35610)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat/Reader has a memory misreference vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

Xpdf null pointer dereference vulnerability (CNVD-2019-38488)

Xpdf is an open source PDF reader from Foo Labs. The product supports decoding LZW compressed format files and read encrypted PDF files. Xpdf suffers from a null pointer dereference vulnerability. An attacker could exploit this vulnerability to cause the application to crash...

Foxit PDF Reader Vulnerable to 8 High-Severity Flaws

Patches are available for eight high-severity flaws impacting the popular PDF software Foxit Reader. The bugs, which exist on Windows versions of the software, enable a remote attacker to execute arbitrary code on vulnerable systems. This week, Foxit Software, the company behind Foxit Reader,...

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

CVE-2019-5031

CVE-2019-5031 affects Foxit PDF Reader, version 9.4.1.16828. The vulnerability is a memory corruption in the V8/JavaScript engine that can be triggered by a specially crafted PDF, causing an out-of-memory condition and arbitrary code execution. Exploitation requires the user to open the malicious...

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

Vulnerability Spotlight: Foxit PDF Reader JavaScript Array.includes remote code execution vulnerability

Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Foxit PDF Reader contains a remote code execution vulnerability in its JavaScript engine. Foxit aims to be one of the most feature-rich PDF readers on the market, and contains many similar functions to that of Adobe Acrobat Reader...