4 matches found
CVE-2025-55307
CVE-2025-55307 – Foxit PDF and Editor for Windows is affected in versions prior to 13.2 and 2025 before 2025.2. A malicious PDF containing a crafted JavaScript call to search.query() with a crafted cDIPath (e.g., "/") can trigger an out-of-bounds read in internal path-parsing logic, potentially l...
CVE-2021-28562
Acrobat Reader DC versions versions 2021.001.20150 and earlier, 2020.001.30020 and earlier and 2017.011.30194 and earlier are affected by a Use After Free vulnerability when executing search queries through Javascript. An unauthenticated attacker could leverage this vulnerability to achieve...
iOS 5.1.1 Safari Browser Denial Of Service
!/usr/bin/env ruby - Title iOS \n\ Crash PoC\n\ \n\ var s = "poc";\n\ s.match"chrbufferlen";\n\ \n\ "; def help puts "iOS = v5.1.1 Safari Browser JS match, search Crash PoC" puts "$0 -p bindport -h bindaddress --verbose" end Parsing options opts = optparser = OptionParser.new do |op| op.on"-h",...
Apple iOS 5.1.1 Safari Browser - 'JS match()' / 'search()' Crash (PoC)
!/usr/bin/env ruby - Title iOS \n\ Crash PoC\n\ \n\ var s = "poc";\n\ s.match"chrbufferlen";\n\ \n\ "; def help puts "iOS = v5.1.1 Safari Browser JS match, search Crash PoC" puts "$0 -p bindport -h bindaddress --verbose" end Parsing options opts = optparser = OptionParser.new do |op| op.on"-h",...