2 matches found
Type confusion
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.1.0.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2018-14317
Foxit Reader 9.1.0.5096 is affected by a PDF processing type-confusion vulnerability that enables remote code execution when a user opens a malicious page/file. Root cause is improper validation of user-supplied data during PDF handling, allowing an attacker to execute code in the current process...