Lucene search
Yongil Lee(@intellee) and Wonyoung Jung(@nonetype) of DiffenseZDI-21-543HistoryMay 07, 2021 - 12:00 a.m.
Foxit Reader XFA leadDigits Heap-based Buffer Overflow Remote Code Execution Vulnerability
2021-05-0700:00:00
Yongil Lee(@intellee) and Wonyoung Jung(@nonetype) of Diffense
www.zerodayinitiative.com
18
remote code execution
foxit reader
xfa
decimal element
buffer overflow
heap-based
user interaction
EPSS
0.003
Percentile
69.8%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the Decimal element. A crafted leadDigits value in a Decimal element can trigger an overflow of a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process.
Related
prion
prion
Heap overflow
2021-05-07 21:15:00
cve
cve
CVE-2021-31454
2021-05-07 21:15:07
cvelist
cvelist
CVE-2021-31454
2021-05-07 20:16:25
nvd
nvd
CVE-2021-31454
2021-05-07 21:15:07
kaspersky
kaspersky
KLA12166 Multiple vulnerabilities in Foxit Reader
2021-05-06 00:00:00
nessus
nessus
Foxit PhantomPDF < 10.1.4 Multiple Vulnerabilities
2021-05-10 00:00:00
Foxit Reader < 10.1.4 Multiple Vulnerabilities
2021-05-10 00:00:00