2 matches found
Type confusion
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2017-16578
The CVE-2017-16578 entry concerns Foxit Reader 8.3.2.25013 and describes a type confusion in the XFA forms’ picture elements that allows remote code execution after user interaction (visiting a malicious page or opening a malicious file). The underlying issue is improper validation of user-suppli...