3 matches found
CVE-2023-33866
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.1.2.15332. By prematurely deleting objects associated with pages, a specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution...
Foxit PDF Editor < 11.2.7 Multiple Vulnerabilities
According to its version, the Foxit PDF Editor application previously named Foxit PhantomPDF installed on the remote Windows host is prior to 11.2.7. It is, therefore affected by multiple vulnerabilities: - A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF...
CVE-2023-33866
CVE-2023-33866 corresponds to a use-after-free vulnerability in Foxit PDF Reader’s JavaScript engine (affected version 12.1.2.15332). A crafted PDF can prematurely delete objects tied to pages, permitting reuse of freed memory and arbitrary code execution. Exploitation requires user action (openi...