3 matches found
Type confusion
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2018-14246
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2018-14246
CVE-2018-14246 affects Foxit Reader (e.g., version 9.0.1.1049) where the convertTocPDF method can trigger a type confusion in JavaScript, allowing remote code execution after user interaction (visiting a malicious page or opening a malicious file). Multiple connected advisories confirm the root c...