Lucene search
K

32 matches found

Positive Technologies
Positive Technologies
added 2019/01/30 12:0 a.m.5 views

PT-2019-10730 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit Software's PDF Reader version 9.1.0.5096 Description: The issue is related to the handling of certain XFA element attributes, which can lead to an out-of-bounds read when a specially crafted PDF document is opened. This can result in th...

7.1CVSS6.4AI score0.49566EPSS
Exploits1References2
Prion
Prion
added 2018/10/08 4:29 p.m.13 views

Design/Logic Flaw

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused. An attacker needs to trick the user to open the malicious file to trigger...

6.8CVSS8.5AI score0.02114EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2018/10/03 3:29 p.m.22 views

CVE-2018-3967

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the...

8CVSS7.9AI score0.06219EPSS
Exploits1References2
Prion
Prion
added 2018/10/03 3:29 p.m.16 views

Design/Logic Flaw

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the...

6.8CVSS7.9AI score0.06219EPSS
Exploits1References2Affected Software2
OSV
OSV
added 2018/10/03 3:29 p.m.4 views

CVE-2018-3966

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the...

7.8CVSS5.8AI score0.06219EPSS
Exploits1References2
CVE
CVE
added 2018/10/03 3:0 p.m.69 views

CVE-2018-3946

CVE-2018-3946 : A use-after-free in Foxit PDF Reader’s JavaScript engine (version 9.1.0.5096) allows arbitrary code execution. A specially crafted PDF can reuse a freed memory object, enabling exploitation. User interaction is required: the attacker must persuade the user to open a malicious PDF;...

8.8CVSS8.2AI score0.03155EPSS
Exploits1References3Affected Software2
Positive Technologies
Positive Technologies
added 2018/10/03 12:0 a.m.5 views

PT-2018-16338 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit Software's PDF Reader version 9.1.0.5096 Description: A use-after-free issue in the JavaScript engine of Foxit Software's PDF Reader can be triggered by a specially crafted PDF document, allowing arbitrary code execution. This can occur...

8.8CVSS7.8AI score0.03155EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2018/10/03 12:0 a.m.5 views

PT-2018-16347 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free vulnerability exists in the JavaScript engine of Foxit PDF Reader. This issue can be triggered by a specially crafted PDF document, allowing a previously freed object in memory...

8CVSS7.9AI score0.06043EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2018/10/03 12:0 a.m.5 views

PT-2018-16349 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free vulnerability exists in the JavaScript engine of Foxit PDF Reader. This issue can be triggered by a specially crafted PDF document, allowing a previously freed object in memory...

8CVSS7.8AI score0.06219EPSS
Exploits1References4
OSV
OSV
added 2018/10/02 9:29 p.m.6 views

CVE-2018-3959

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Author property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

7.8CVSS5.6AI score0.02361EPSS
Exploits0References2
Prion
Prion
added 2018/10/02 9:29 p.m.16 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the Keywords property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger this...

6.8CVSS7.6AI score0.02895EPSS
Exploits0References3Affected Software2
Positive Technologies
Positive Technologies
added 2018/10/02 12:0 a.m.6 views

PT-2018-16341 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free issue exists in the JavaScript engine. This can occur when accessing the Subject property of the this.info object. An attacker can trigger this by tricking a user into opening ...

8CVSS7.5AI score0.02895EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2018/10/02 12:0 a.m.6 views

PT-2018-16345 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader version 9.1.0.5096 Description: A use-after-free issue exists in the JavaScript engine. This can occur when accessing the CreationDate property of the this.info object. An attacker can exploit this by tricking a user into...

8CVSS7.2AI score0.02497EPSS
Exploits0References4
CNVD
CNVD
added 2018/09/03 12:0 a.m.4 views

Foxit Reader Type Obfuscation Vulnerability (CNVD-2018-17493)

Foxit Reader is China's Foxit Foxit Software Corporation, a PDF document reader. A type confusion vulnerability exists in the handling of PDF files in Foxit Reader version 9.1.0.5096, where the program does not properly validate user-submitted data. The vulnerability can be exploited by a remote...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References1
NVD
NVD
added 2018/08/01 8:29 p.m.29 views

CVE-2018-3939

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

8.8CVSS8.2AI score0.02347EPSS
Exploits1References2
CNVD
CNVD
added 2018/08/01 12:0 a.m.4 views

Foxit Reader Type Obfuscation Remote Code Execution Vulnerability (CNVD-2018-15070)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.3 views

Foxit Reader Memory Error Reference Remote Code Execution Vulnerability (CNVD-2018-15085)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.3 views

Foxit Reader Remote Code Execution Vulnerability (CNVD-2018-14563)

Foxit Reader for Windows is China's Foxit Foxit Software Corporation, a Windows-based platform for PDF document reader. A post-release reuse vulnerability exists in the handling of Sound annotations in Foxit Reader 9.1.0.5096 and earlier versions for Windows. A remote attacker can exploit this...

8.8CVSS8.9AI score0.02773EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.3 views

Foxit Reader Type Obfuscation Remote Code Execution Vulnerability (CNVD-2018-15103)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/01 12:0 a.m.4 views

Foxit Reader Remote Code Execution Vulnerability (CNVD-2018-14562)

Foxit Reader for Windows is China's Foxit Foxit Software Corporation, a Windows-based platform for PDF document reader. A post-release reuse vulnerability exists in the handling of Square annotations in Foxit Reader 9.1.0.5096 and earlier versions for Windows. A remote attacker can exploit this...

8.8CVSS8.9AI score0.02773EPSS
Exploits0References1
Rows per page
Query Builder