3 matches found
CVE-2017-14824
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Type confusion
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2017-14824
CVE-2017-14824 affects Foxit Reader 8.3.1.21155 (XFAScriptObject insert) where improper validation of user-supplied data can cause a type confusion, enabling remote code execution. The vulnerability requires user interaction (malicious page or file) and allows code execution with the current proc...