372 matches found
CVE-2019-6763
Foxit CVE-2019-6763 affects Foxit Reader 9.4.1.16828 via the Foxit.FoxitReader.Ctl ActiveX object’s ToggleFormsDesign method. The root cause is failure to validate the existence of an object before performing operations, enabling remote code execution when a user visits a malicious page or opens ...
CVE-2015-2790
CVE-2015-2790 affects Foxit Reader, Foxit Enterprise Reader, and Foxit PhantomPDF prior to 7.1. The issue is a denial-of-service caused by memory corruption triggered by a crafted GIF image, specifically via (1) Ubyte Size in a DataSubBlock or (2) LZWMinimumCodeSize. OpenVAS/Nessus entries confir...
CVE-2017-10947
CVE-2017-10947 affects Foxit Reader 8.2.1.6871 and Foxit PhantomPDF prior to 8.3.1, where a use-after-free in the print() function arises from not validating object existence before operations. This allows remote code execution under the process context when a user opens a crafted document or vis...
CVE-2017-16576
CVE-2017-16576 affects Foxit Reader, notably versions around 8.3.1.21155 (and related 8.3.x lines). The root cause is in the XFA field element where the code fails to validate object existence before operating on it, enabling remote code execution when a user opens a malicious page or file and in...
CVE-2018-10303
Foxit Reader and Foxit PhantomPDF before 9.1 are affected by a use-after-free vulnerability in Foxit’s PDF software that can allow remote code execution. The CVE-2018-10303 description ties to iDefense ID V-y0nqfutlf3. The connected documents do not provide exploitation details or a confirmed pat...
CVE-2018-11618
CVE-2018-11618 affects Foxit Reader (notably versions around 9.0.0.29935 and earlier) and is caused by a failure to validate the existence of an object before performing operations in the resetForm method, leading to a remote code execution via user interaction. The vulnerability is documented as...
CVE-2018-14275
Foxit Reader CVE-2018-14275: A type confusion in spawnPageFromTemplate in Foxit Reader (affecting versions including 9.0.1.1049) allows remote code execution when a user visits a malicious page or opens a malicious file; exploitation requires user interaction and can execute code in the current p...
CVE-2018-14285
CVE-2018-14285 affects Foxit Reader 9.0.1.1049 (Windows) and is caused by improper validation in handling of the oneOfChild attribute, leading to a type confusion condition that allows remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious ...
CVE-2018-18933
CVE-2018-18933 affects Foxit Reader 9.3.0.10826 with the u3d plugin (9.3.0.10809 in FoxitReader.exe). The vulnerability is an out-of-bounds read caused by a Read Access Violation near NULL in FoxitReader!safe_vsnprintf+0x00000000002c4330 when processing a U3D sample, enabling a remote attacker to...
CVE-2019-6768
CVE-2019-6768 affects Foxit Reader 9.4.1.16828 (Windows). The vulnerability resides in the removeField method when processing AcroForms, caused by not validating the existence of an object before performing operations, enabling remote code execution. User interaction is required (target must visi...
CVE-2020-26540
Foxit Reader and Foxit PhantomPDF for macOS are affected by a code injection/information disclosure vulnerability in versions prior to 4.1. The root cause is that the Hardened Runtime protection is not applied to code signing, which can allow an attacker to inject code or leak information due to ...
CVE-2016-4060
CVE-2016-4060 is a use-after-free vulnerability in Foxit Reader and Foxit PhantomPDF for Windows, tracked across multiple sources. The issue affects Foxit Reader and Foxit PhantomPDF versions prior to 7.3.4. The root cause is a memory mismanagement condition (use-after-free) exposed by parsing ce...
CVE-2017-14833
CVE-2017-14833 affects Foxit Reader 8.3.1.21155 and related builds, where the style attribute of Text Annotation objects can be manipulated after object existence is not validated, enabling remote code execution in the current process. Exploitation requires user interaction (visiting a malicious ...
CVE-2017-14836
CVE-2017-14836 is a remote code execution vulnerability in Foxit Reader 8.3.1. The issue arises from the modDate property of Annotation objects, where the code does not validate the existence of the target object before operating on it. This can allow an attacker to execute arbitrary code in the ...
CVE-2017-16572
CVE-2017-16572 affects Foxit Reader 8.3.1.21155 . The vulnerability resides in FormCalc's closeDoc method and is caused by improper validation that leads to a type confusion condition, enabling remote code execution in the context of the current process. Exploitation requires user interaction (th...
CVE-2017-8453
CVE-2017-8453 affects Foxit Reader before 8.2.1 and Foxit PhantomPDF before 8.2.1. The vulnerability is an out-of-bounds read triggered by a crafted font in a PDF, allowing remote attackers to obtain sensitive information or possibly execute arbitrary code. The CVE is documented with a high-sever...
CVE-2018-11622
Summary (CVE-2018-11622) : A boundary/overflow flaw in Foxit Reader’s ConvertToPDF_x86.dll (CVSS up to 8.8) allows a remote attacker to execute arbitrary code after the user visits a malicious page or opens a crafted file. Affected: Foxit Reader on Windows (e.g., versions around 9.0.1.1049 and ea...
CVE-2018-14247
Foxit Reader CVE-2018-14247 is a type-confusion remote code execution vulnerability in the exportAsFDF method. Exploitation requires user interaction (visiting a malicious page or opening a malicious file via JavaScript) and can execute code under the current process. Connected advisories (e.g., ...
CVE-2018-14256
CVE-2018-14256 affects Foxit Reader, where the flaw is in the getOCGs method leading to a type confusion and remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a crafted file). Affected: Foxit Reader 9.0.1.1049 (and related Foxit products); multipl...
CVE-2018-14258
Foxit Reader (Windows) is affected by CVE-2018-14258 due to a type confusion in getPageNthWord, allowing remote code execution when a user opens a malicious page/file or otherwise interacts with crafted content. The flaw exists in Foxit Reader 9.0.1.1049 and, per advisories, affects versions olde...
CVE-2018-14267
Foxit Reader (Windows) is affected by CVE-2018-14267, a type-confusion vulnerability in the importTextData method that can be triggered to execute code remotely. Exploitation requires user interaction (visiting a malicious page or opening a crafted file) and results in arbitrary code execution in...
CVE-2020-17415
CVE-2020-17415 affects Foxit PhantomPDF (notably the Update Service) where incorrect permissions on a configuration/resource used by the update service allow a local, low-privilege attacker to escalate to SYSTEM and execute code. Affected versions include PhantomPDF 10.0.0.35798 (and related 10.0...
CVE-2021-38572
CVE-2021-38572 affects Foxit Reader and Foxit PhantomPDF prior to 10.1.4, where the extractPages pathname is not validated, allowing an attacker to write to arbitrary files. The connected documents confirm the affected products and the root cause (unvalidated extractPages pathname). No exploitati...
CVE-2012-4337
Foxit Reader is affected: pre-5.3 on Windows XP/7 allows remote code execution via a crafted PDF that triggers negative-number calculation during cross-reference processing. The root cause is memory corruption during PDF parsing, leading to arbitrary code execution with the caller’s privileges. A...
CVE-2017-14821
CVE-2017-14821 affects Foxit Reader 8.3.1.21155, with the root cause in parsing the xTsiz member of SIZ markers, leading to potential information disclosure and, in conjunction with other vulnerabilities, code execution. The exploit requires user interaction (visiting a malicious page or opening ...
CVE-2017-16571
CVE-2017-16571 affects Foxit Reader 8.3.1.21155. The issue is a type-confusion flaw in handling references to the app object from FormCalc, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The vulnerability is document...
CVE-2017-16574
Summary (CVE-2017-16574): Foxit Reader (8.3.1.21155) is affected by an information-disclosure vulnerability in the Image filters parsing, caused by inadequate validation of user-supplied data, which can lead to an out-of-bounds read. Exploitation requires user interaction (visiting a malicious pa...
CVE-2017-16575
CVE-2017-16575 affects Foxit Reader and is a remote code execution vulnerability in the XFA bind element. The root cause is a failure to validate the existence of an object before performing operations on it, enabling an attacker to execute arbitrary code in the current process when a user opens ...
CVE-2018-10480
Foxit Reader 9.0.0.29935 is affected by CVE-2018-10480 due to improper validation in the handling of the U3D Node Name buffer, causing a read past the end of an allocated buffer. The vulnerability can disclose sensitive information and, in conjunction with other vulnerabilities, may allow code ex...
CVE-2018-10490
CVE-2018-10490 affects Foxit Reader 9.0.0.29935 and relates to the parsing of JPEG images embedded inside U3D files. The vulnerability is caused by a lack of proper validation of user-supplied data, leading to an out-of-bounds memory access and enabling remote code execution in the context of the...
CVE-2018-14291
Foxit Reader CVE-2018-14291 is a PDF parsing vulnerability (use-after-free) that allows remote code execution when an attacker manipulates PDF elements; user interaction (open a malicious file/page) is required. The weakness is in the parsing of PDF documents, specifically a pointer reuse after f...
CVE-2018-14300
CVE-2018-14300 describes a remote code execution vulnerability in Foxit Reader caused by a use-after-free in the handling of Polygon annotations. The flaw reuses a freed pointer during document element processing, enabling an attacker to run arbitrary code in the victim process when a user opens ...
CVE-2018-14302
CVE-2018-14302 affects Foxit Reader (Windows) via a remote code execution vulnerability in Square annotations. The flaw is an use-after-free in processing of annotations that can be triggered when a user visits a malicious page or opens a malicious file, enabling arbitrary code execution in the c...
CVE-2018-14308
CVE-2018-14308 affects Foxit Reader (and Foxit PhantomPDF) with versions before 9.2.0.9097. The root cause is a use-after-free in valueAsString handling where the code does not verify an object exists before operating on it, allowing remote code execution when a user visits a malicious page or op...
CVE-2020-17414
CVE-2020-17414 affects Foxit Reader (and related updates) with a local privilege-escalation in the Update Service due to incorrect permissions on a resource used by the service, enabling code execution in the SYSTEM context. Impact is local, requiring low-privilege code execution before exploitat...
CVE-2020-17417
CVE-2020-17417 affects Foxit Reader (10.0.1.35811 and earlier) and related Foxit products. The root cause is a failure to verify the existence of an Annotation object before performing operations on it, leading to use-after-free/invalid object handling in Annotation processing. This can enable re...
CVE-2020-26537
CVE-2020-26537 affects Foxit Reader and PhantomPDF prior to version 10.1. The issue occurs in a shading calculation where the number of outputs does not match the color components in a color space, causing an out-of-bounds write. The connected sources confirm the affected product and the underlyi...
CVE-2016-4064
Foxit Reader and Foxit PhantomPDF (Windows) ≤ 7.3.3 are affected by CVE-2016-4064 due to a use-after-free in the XFA forms handling when a crafted remerge call is processed. This leads to remote code execution with high impact (as described in connected sources). Remediation per the documents: up...
CVE-2017-14827
CVE-2017-14827 affects Foxit Reader 8.3.1.21155 where the append method of XFA Node objects fails to properly validate user-supplied data, causing a type-confusion vulnerability that enables remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a mali...
CVE-2017-16577
CVE-2017-16577 affects Foxit Reader 8.3.1.21155. The flaw is in the alignment attribute of Field objects where the program fails to validate object existence before operating on it, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a mali...
CVE-2017-16581
Foxit Reader 8.3.2.25013 is affected by CVE-2017-16581. The vulnerability is a remote code execution flaw in the author attribute of the Document object due to not validating the existence of an object before performing operations. Exploitation requires user interaction (visiting a malicious page...
CVE-2017-16583
Foxit Reader 8.3.2.25013 is vulnerable to a remote code execution flaw in the XFA dataset element (missing validation of object existence). Exploitation requires user interaction (visiting a malicious page or opening a malicious file) and can execute code with the current process context. Affecte...
CVE-2017-16585
Foxit Reader 8.3.2.25013 contains a remote code execution flaw in the app.response method caused by not validating an object before operating on it. An attacker can exploit this via a user-interaction (visiting a malicious page or opening a malicious file) to run code in the process context. Conn...
CVE-2018-14254
CVE-2018-14254 affects Foxit Reader (notably 9.0.1.1049) where a type confusion in the getLinks method can be triggered by JavaScript on a malicious page or file, allowing remote code execution under the process context. Multiple connected sources corroborate a getLinks-based type confusion with ...
CVE-2018-14278
CVE-2018-14278 affects Foxit Reader. The flaw is a type confusion in getPageNumWords that can allow remote code execution via crafted JavaScript when a user opens a malicious page/file. Exploitation requires user interaction. Reports/connected advisories indicate multiple related fixes; remediati...
CVE-2018-14295
Summary: CVE-2018-14295 affects Foxit PhantomPDF (and Foxit Reader) with a PDF-parsing flaw. A vulnerability in how shading patterns are processed can cause an integer overflow before buffer allocation, enabling remote code execution when a user opens a malicious file/page or visits a crafted pag...
CVE-2018-14311
CVE-2018-14311 affects Foxit Reader (and Foxit PhantomPDF) via a type confusion in XFA event handling. The flaw arises from improper validation of user-supplied data, enabling remote code execution when a user opens a malicious file or visits a crafted page. Exploitation requires user interaction...
CVE-2018-19345
Summary (CVE-2018-19345) The u3d plugin in Foxit Reader 9.3.0.10826 (plugin 9.3.0.10809) is vulnerable to a denial of service and potential information disclosure due to a Read Access Violation near NULL in U3DBrowser!PlugInMain. This results in an out-of-bounds read when processing a malicious U...
CVE-2018-9941
Foxit Reader 9.0.0.29935 is affected by a vulnerability in the XFA record append handling that can lead to remote code execution via type confusion. The flaw arises from improper validation of user-supplied data, and exploitation requires user interaction (visiting a malicious page or opening a m...
CVE-2018-9947
Foxit Reader 9.0.0.29935 is affected by CVE-2018-9947, a heap-based buffer overflow in BMP image parsing. The flaw arises from improper validation of the length of user-supplied data before copying to a fixed-length heap buffer, allowing remote code execution. Exploitation requires user interacti...