PT-2026-35401

A crafted XFA PDF can trigger a use-after-free condition during calculate event processing, causing the application to crash and resulting in an arbitrary code execution...

Foxit Reader 安全漏洞

Foxit Reader is a PDF document reader from the Chinese company Foxit. A security vulnerability exists in Foxit Reader versions prior to 10.1.4 and PhantomPDF versions prior to 10.1.4, which stems from the software's incorrect handling of the Tab key during XFA form interactions, resulting in...

PT-2019-10730 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit Software's PDF Reader version 9.1.0.5096 Description: The issue is related to the handling of certain XFA element attributes, which can lead to an out-of-bounds read when a specially crafted PDF document is opened. This can result in th...

PT-2019-18287 · Foxit · Foxit Reader

Name of the Vulnerable Software and Affected Versions: Foxit Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious...

Foxit Reader XFA borderColor Remote Code Execution Vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in the handling of the XFA borderColor property. The vulnerability can be exploited to execute arbitrary code due to a lack of validation before performing an operation on an object...

Foxit Reader XFA layout remote code execution vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in the XFA layout element, which can be exploited by an attacker to execute arbitrary code in the current process context due to a lack of proper validation of user-supplied data...

Foxit Reader XFA Layout object page method remote code execution vulnerability

Foxit Reader is China's Foxit Foxit Software Corporation, a PDF document reader. A remote code execution vulnerability exists in the page method of the XFA Layout object in Foxit Reader version 8.3.1.21155, which results from the program failing to properly validate user-submitted data. A remote...

CVE-2017-16576

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within XFA's...

CVE-2017-11224

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution...

CVE-2009-2483

libprop/propobject.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service NULL pointer dereference and kernel panic via a malformed externalized plist XML form containing an undefined element...

CVE-2009-2483

The CVE-2009-2483 entry affects NetBSD 4.0 and 4.0.1 via libprop/prop_object.c in proplib. A local attacker can trigger a denial of service by supplying a malformed externalized plist (XML form) containing an undefined element, causing a NULL pointer dereference and kernel panic. The connected do...