2 matches found
Type confusion
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the w...
CVE-2017-14828
CVE-2017-14828 affects Foxit Reader 8.3.1.21155 where a type-confusion in the XFA Layout w method allows remote code execution. Exploitation requires user interaction (malicious page or file). Root cause: improper validation of user-supplied data. Impact: arbitrary code execution in the current p...