372 matches found
CVE-2017-16576
CVE-2017-16576 affects Foxit Reader, notably versions around 8.3.1.21155 (and related 8.3.x lines). The root cause is in the XFA field element where the code fails to validate object existence before operating on it, enabling remote code execution when a user opens a malicious page or file and in...
CVE-2018-3842
CVE-2018-3842 affects Foxit PDF Reader (and related Foxit PDF components) with an exploitable use of an uninitialized pointer in the JavaScript engine. A specially crafted PDF can lead to dereference of uninitialized memory, enabling arbitrary code execution when the user opens the file; attack s...
CVE-2017-10994
Foxit CVE-2017-10994 affects Foxit Reader before 8.3.1 and Foxit PhantomPDF before 8.3.1. The vulnerability is described as an Arbitrary Write flaw that allows a remote attacker to execute arbitrary code via a crafted PDF document. Multiple connected advisories corroborate that the issue is a rem...
CVE-2019-6763
Foxit CVE-2019-6763 affects Foxit Reader 9.4.1.16828 via the Foxit.FoxitReader.Ctl ActiveX object’s ToggleFormsDesign method. The root cause is failure to validate the existence of an object before performing operations, enabling remote code execution when a user visits a malicious page or opens ...
CVE-2012-4337
Foxit Reader is affected: pre-5.3 on Windows XP/7 allows remote code execution via a crafted PDF that triggers negative-number calculation during cross-reference processing. The root cause is memory corruption during PDF parsing, leading to arbitrary code execution with the caller’s privileges. A...
CVE-2015-2790
CVE-2015-2790 affects Foxit Reader, Foxit Enterprise Reader, and Foxit PhantomPDF prior to 7.1. The issue is a denial-of-service caused by memory corruption triggered by a crafted GIF image, specifically via (1) Ubyte Size in a DataSubBlock or (2) LZWMinimumCodeSize. OpenVAS/Nessus entries confir...
CVE-2017-14836
CVE-2017-14836 is a remote code execution vulnerability in Foxit Reader 8.3.1. The issue arises from the modDate property of Annotation objects, where the code does not validate the existence of the target object before operating on it. This can allow an attacker to execute arbitrary code in the ...
CVE-2018-10303
Foxit Reader and Foxit PhantomPDF before 9.1 are affected by a use-after-free vulnerability in Foxit’s PDF software that can allow remote code execution. The CVE-2018-10303 description ties to iDefense ID V-y0nqfutlf3. The connected documents do not provide exploitation details or a confirmed pat...
CVE-2018-11618
CVE-2018-11618 affects Foxit Reader (notably versions around 9.0.0.29935 and earlier) and is caused by a failure to validate the existence of an object before performing operations in the resetForm method, leading to a remote code execution via user interaction. The vulnerability is documented as...
CVE-2018-11622
Summary (CVE-2018-11622) : A boundary/overflow flaw in Foxit Reader’s ConvertToPDF_x86.dll (CVSS up to 8.8) allows a remote attacker to execute arbitrary code after the user visits a malicious page or opens a crafted file. Affected: Foxit Reader on Windows (e.g., versions around 9.0.1.1049 and ea...
CVE-2018-14247
Foxit Reader CVE-2018-14247 is a type-confusion remote code execution vulnerability in the exportAsFDF method. Exploitation requires user interaction (visiting a malicious page or opening a malicious file via JavaScript) and can execute code under the current process. Connected advisories (e.g., ...
CVE-2018-14275
Foxit Reader CVE-2018-14275: A type confusion in spawnPageFromTemplate in Foxit Reader (affecting versions including 9.0.1.1049) allows remote code execution when a user visits a malicious page or opens a malicious file; exploitation requires user interaction and can execute code in the current p...
CVE-2018-14285
CVE-2018-14285 affects Foxit Reader 9.0.1.1049 (Windows) and is caused by improper validation in handling of the oneOfChild attribute, leading to a type confusion condition that allows remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious ...
CVE-2018-18933
CVE-2018-18933 affects Foxit Reader 9.3.0.10826 with the u3d plugin (9.3.0.10809 in FoxitReader.exe). The vulnerability is an out-of-bounds read caused by a Read Access Violation near NULL in FoxitReader!safe_vsnprintf+0x00000000002c4330 when processing a U3D sample, enabling a remote attacker to...
CVE-2020-26540
Foxit Reader and Foxit PhantomPDF for macOS are affected by a code injection/information disclosure vulnerability in versions prior to 4.1. The root cause is that the Hardened Runtime protection is not applied to code signing, which can allow an attacker to inject code or leak information due to ...
CVE-2016-4060
CVE-2016-4060 is a use-after-free vulnerability in Foxit Reader and Foxit PhantomPDF for Windows, tracked across multiple sources. The issue affects Foxit Reader and Foxit PhantomPDF versions prior to 7.3.4. The root cause is a memory mismanagement condition (use-after-free) exposed by parsing ce...
CVE-2017-14821
CVE-2017-14821 affects Foxit Reader 8.3.1.21155, with the root cause in parsing the xTsiz member of SIZ markers, leading to potential information disclosure and, in conjunction with other vulnerabilities, code execution. The exploit requires user interaction (visiting a malicious page or opening ...
CVE-2017-14833
CVE-2017-14833 affects Foxit Reader 8.3.1.21155 and related builds, where the style attribute of Text Annotation objects can be manipulated after object existence is not validated, enabling remote code execution in the current process. Exploitation requires user interaction (visiting a malicious ...
CVE-2017-16572
CVE-2017-16572 affects Foxit Reader 8.3.1.21155 . The vulnerability resides in FormCalc's closeDoc method and is caused by improper validation that leads to a type confusion condition, enabling remote code execution in the context of the current process. Exploitation requires user interaction (th...
CVE-2017-16585
Foxit Reader 8.3.2.25013 contains a remote code execution flaw in the app.response method caused by not validating an object before operating on it. An attacker can exploit this via a user-interaction (visiting a malicious page or opening a malicious file) to run code in the process context. Conn...
CVE-2017-8453
CVE-2017-8453 affects Foxit Reader before 8.2.1 and Foxit PhantomPDF before 8.2.1. The vulnerability is an out-of-bounds read triggered by a crafted font in a PDF, allowing remote attackers to obtain sensitive information or possibly execute arbitrary code. The CVE is documented with a high-sever...
CVE-2018-10480
Foxit Reader 9.0.0.29935 is affected by CVE-2018-10480 due to improper validation in the handling of the U3D Node Name buffer, causing a read past the end of an allocated buffer. The vulnerability can disclose sensitive information and, in conjunction with other vulnerabilities, may allow code ex...
CVE-2018-10490
CVE-2018-10490 affects Foxit Reader 9.0.0.29935 and relates to the parsing of JPEG images embedded inside U3D files. The vulnerability is caused by a lack of proper validation of user-supplied data, leading to an out-of-bounds memory access and enabling remote code execution in the context of the...
CVE-2018-14256
CVE-2018-14256 affects Foxit Reader, where the flaw is in the getOCGs method leading to a type confusion and remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a crafted file). Affected: Foxit Reader 9.0.1.1049 (and related Foxit products); multipl...
CVE-2018-14258
Foxit Reader (Windows) is affected by CVE-2018-14258 due to a type confusion in getPageNthWord, allowing remote code execution when a user opens a malicious page/file or otherwise interacts with crafted content. The flaw exists in Foxit Reader 9.0.1.1049 and, per advisories, affects versions olde...
CVE-2018-14267
Foxit Reader (Windows) is affected by CVE-2018-14267, a type-confusion vulnerability in the importTextData method that can be triggered to execute code remotely. Exploitation requires user interaction (visiting a malicious page or opening a crafted file) and results in arbitrary code execution in...
CVE-2019-6770
Foxit Reader 9.4.1.16828 is affected by a vulnerability in the resetForm method for AcroForms that discloses information due to not validating an object’s existence before operations. Exploitation requires user interaction (visiting a malicious page or opening a malicious file) and, per the docum...
CVE-2020-17414
CVE-2020-17414 affects Foxit Reader (and related updates) with a local privilege-escalation in the Update Service due to incorrect permissions on a resource used by the service, enabling code execution in the SYSTEM context. Impact is local, requiring low-privilege code execution before exploitat...
CVE-2020-17415
CVE-2020-17415 affects Foxit PhantomPDF (notably the Update Service) where incorrect permissions on a configuration/resource used by the update service allow a local, low-privilege attacker to escalate to SYSTEM and execute code. Affected versions include PhantomPDF 10.0.0.35798 (and related 10.0...
CVE-2020-26537
CVE-2020-26537 affects Foxit Reader and PhantomPDF prior to version 10.1. The issue occurs in a shading calculation where the number of outputs does not match the color components in a color space, causing an out-of-bounds write. The connected sources confirm the affected product and the underlyi...
CVE-2021-38572
CVE-2021-38572 affects Foxit Reader and Foxit PhantomPDF prior to 10.1.4, where the extractPages pathname is not validated, allowing an attacker to write to arbitrary files. The connected documents confirm the affected products and the root cause (unvalidated extractPages pathname). No exploitati...
CVE-2017-14827
CVE-2017-14827 affects Foxit Reader 8.3.1.21155 where the append method of XFA Node objects fails to properly validate user-supplied data, causing a type-confusion vulnerability that enables remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a mali...
CVE-2017-14831
CVE-2017-14831 affects Foxit Reader 8.3.1.21155. The root cause is the author attribute of Circle Annotation objects: the implementation does not validate the existence of an object before operating on it, enabling remote code execution in the context of the current process when a user opens a ma...
CVE-2017-16571
CVE-2017-16571 affects Foxit Reader 8.3.1.21155. The issue is a type-confusion flaw in handling references to the app object from FormCalc, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The vulnerability is document...
CVE-2017-16574
Summary (CVE-2017-16574): Foxit Reader (8.3.1.21155) is affected by an information-disclosure vulnerability in the Image filters parsing, caused by inadequate validation of user-supplied data, which can lead to an out-of-bounds read. Exploitation requires user interaction (visiting a malicious pa...
CVE-2017-16575
CVE-2017-16575 affects Foxit Reader and is a remote code execution vulnerability in the XFA bind element. The root cause is a failure to validate the existence of an object before performing operations on it, enabling an attacker to execute arbitrary code in the current process when a user opens ...
CVE-2017-16581
Foxit Reader 8.3.2.25013 is affected by CVE-2017-16581. The vulnerability is a remote code execution flaw in the author attribute of the Document object due to not validating the existence of an object before performing operations. Exploitation requires user interaction (visiting a malicious page...
CVE-2017-16583
Foxit Reader 8.3.2.25013 is vulnerable to a remote code execution flaw in the XFA dataset element (missing validation of object existence). Exploitation requires user interaction (visiting a malicious page or opening a malicious file) and can execute code with the current process context. Affecte...
CVE-2018-1177
Foxit Reader 9.0.0.29935 is affected by CVE-2018-1177. The flaw lies in the handling of addAnnot, where the code fails to validate the existence of an object before performing operations, enabling remote code execution under the current process context. User interaction is required to trigger the...
CVE-2018-14254
CVE-2018-14254 affects Foxit Reader (notably 9.0.1.1049) where a type confusion in the getLinks method can be triggered by JavaScript on a malicious page or file, allowing remote code execution under the process context. Multiple connected sources corroborate a getLinks-based type confusion with ...
CVE-2018-14291
Foxit Reader CVE-2018-14291 is a PDF parsing vulnerability (use-after-free) that allows remote code execution when an attacker manipulates PDF elements; user interaction (open a malicious file/page) is required. The weakness is in the parsing of PDF documents, specifically a pointer reuse after f...
CVE-2018-14300
CVE-2018-14300 describes a remote code execution vulnerability in Foxit Reader caused by a use-after-free in the handling of Polygon annotations. The flaw reuses a freed pointer during document element processing, enabling an attacker to run arbitrary code in the victim process when a user opens ...
CVE-2018-14302
CVE-2018-14302 affects Foxit Reader (Windows) via a remote code execution vulnerability in Square annotations. The flaw is an use-after-free in processing of annotations that can be triggered when a user visits a malicious page or opens a malicious file, enabling arbitrary code execution in the c...
CVE-2018-14308
CVE-2018-14308 affects Foxit Reader (and Foxit PhantomPDF) with versions before 9.2.0.9097. The root cause is a use-after-free in valueAsString handling where the code does not verify an object exists before operating on it, allowing remote code execution when a user visits a malicious page or op...
CVE-2018-9947
Foxit Reader 9.0.0.29935 is affected by CVE-2018-9947, a heap-based buffer overflow in BMP image parsing. The flaw arises from improper validation of the length of user-supplied data before copying to a fixed-length heap buffer, allowing remote code execution. Exploitation requires user interacti...
CVE-2020-17417
CVE-2020-17417 affects Foxit Reader (10.0.1.35811 and earlier) and related Foxit products. The root cause is a failure to verify the existence of an Annotation object before performing operations on it, leading to use-after-free/invalid object handling in Annotation processing. This can enable re...
CVE-2016-4064
Foxit Reader and Foxit PhantomPDF (Windows) ≤ 7.3.3 are affected by CVE-2016-4064 due to a use-after-free in the XFA forms handling when a crafted remerge call is processed. This leads to remote code execution with high impact (as described in connected sources). Remediation per the documents: up...
CVE-2017-14828
CVE-2017-14828 affects Foxit Reader 8.3.1.21155 where a type-confusion in the XFA Layout w method allows remote code execution. Exploitation requires user interaction (malicious page or file). Root cause: improper validation of user-supplied data. Impact: arbitrary code execution in the current p...
CVE-2017-16577
CVE-2017-16577 affects Foxit Reader 8.3.1.21155. The flaw is in the alignment attribute of Field objects where the program fails to validate object existence before operating on it, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a mali...
CVE-2018-14278
CVE-2018-14278 affects Foxit Reader. The flaw is a type confusion in getPageNumWords that can allow remote code execution via crafted JavaScript when a user opens a malicious page/file. Exploitation requires user interaction. Reports/connected advisories indicate multiple related fixes; remediati...