Lucene search
K

5 matches found

CNVD
CNVD
added 2018/05/18 12:0 a.m.3 views

Foxit Reader Arbitrary Code Execution Vulnerability (CNVD-2018-10941)

Foxit Reader is China's Foxit Foxit Software Corporation, a PDF document reader. A security vulnerability exists in the parsing of U3D Chain Index objects in Foxit Reader version 9.0.0.29935, which is caused by the program failing to properly validate user-submitted data. The vulnerability can be...

8.8CVSS7.6AI score0.02773EPSS
Exploits0References1
NVD
NVD
added 2018/05/17 3:29 p.m.22 views

CVE-2018-10477

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References2
Prion
Prion
added 2018/05/17 3:29 p.m.18 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS8.9AI score0.02773EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2018/05/17 3:0 p.m.20 views

CVE-2018-10477

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.9AI score0.02773EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2018/05/04 12:0 a.m.30 views

Foxit Reader U3D Chain Index Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D...

6.8CVSS4.5AI score0.02773EPSS
Exploits0References1
Rows per page
Query Builder