3 matches found
Design/Logic Flaw
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
CVE-2017-10951
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
CVE-2017-10951
CVE-2017-10951 affects Foxit Reader 8.x (e.g., 8.3.0.14878) and Foxit PhantomPDF prior to 8.3.2. The vulnerability arises from improper validation of a user-supplied string used in the app.launchURL JavaScript call, enabling an attacker to execute arbitrary code under the current process context....