3 matches found
CVE-2018-19451
A command injection can occur for specially crafted PDF files in Foxit Reader SDK ActiveX Professional 5.4.0.1031 when using the Open File action on a Field. An attacker can leverage this to gain remote code execution...
CVE-2018-19451
A command injection can occur for specially crafted PDF files in Foxit Reader SDK ActiveX Professional 5.4.0.1031 when using the Open File action on a Field. An attacker can leverage this to gain remote code execution...
CVE-2018-19451
Foxit Reader SDK ActiveX Pro (pre-5.5.1, e.g., 5.4.0.1031) is affected by CVE-2018-19451: a command injection via the Open File action on a Field can lead to remote code execution. The issue stems from inadequate validation when using a user-supplied string to invoke system calls. Exploitation re...