3 matches found
Foxit Reader PhantomPDF Use After Free Code Execution (CVE-2019-6730)
A use after free vulnerability exists in Foxit Reader. This vulnerability is due to improper handling of freed objects in the JavaScript popUpMenu method. Successful exploitation could allow the attacker to execute arbitrary code in the context of the application...
CVE-2019-6730
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the popUpMenu metho...
CVE-2019-6730
CVE-2019-6730 affects Foxit Reader (and PhantomPDF in some records) via the popUpMenu method. The root cause is failure to validate the existence of an object before performing operations, leading to a use-after-free/memory misreference . This allows remote attackers to execute arbitrary code in ...