2 matches found
CVE-2018-19448
In Foxit Reader SDK ActiveX Professional 5.4.0.1031, an uninitialized object in IReaderContentProvider::GetDocEventHandler occurs when embedding the control into Office documents. By opening a specially crafted document, an attacker can trigger an out of bounds write condition, possibly leveragin...
CVE-2018-19448
The CVE-2018-19448 vulnerability affects Foxit Reader SDK ActiveX Pro, where an uninitialized pointer in IReader_ContentProvider::GetDocEventHandler can be triggered when the ActiveX control is embedded in Office documents, allowing remote code execution. Exploitation requires user interaction (e...