Lucene search
+L

24 matches found

Cvelist
Cvelist
added 2019/01/24 4:0 a.m.23 views

CVE-2018-17655

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.4AI score0.03918EPSS
Exploits0References2
CVE
CVE
added 2019/01/24 4:0 a.m.53 views

CVE-2018-17654

Foxit Reader on Windows (versions up to 9.2.0.9297) is affected by a vulnerability in the XFA Form Model insertInstance handling. The flaw is a use-after-free due to lack of validating object existence before operations, enabling remote code execution if a user opens a malicious file or visits a ...

8.8CVSS7.8AI score0.03918EPSS
Exploits0References2Affected Software2
CNVD
CNVD
added 2018/10/17 12:0 a.m.5 views

Foxit Reader and Foxit PhantomPDF for Windows Memory Misreference Vulnerability (CNVD-2018-24463)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A memory error vulnerability exists in the handling of the moveInstance method of the Form object in Foxit Reader 9.2.0.9297 and...

8.8CVSS8.7AI score0.03918EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/10/11 12:0 a.m.30 views

Foxit Reader XFA Form Model insertInstance Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

7.8CVSS2AI score0.03918EPSS
Exploits0References1
Rows per page
Query Builder