Foxit pdf reader vulnerability
WebMar 31, 2024 · Foxit PDF Reader Buffer Overflow Vulnerability (CNVD-2024-25115) 2024-03-31T00:00:00 Description Foxit PDF Reader is a PDF reader from Foxit, a Chinese … WebNational Vulnerability Database NVD. Vulnerabilities; CVE-2024-41783 Detail Description . Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
Foxit pdf reader vulnerability
Did you know?
WebA type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this ... WebFoxit Reader is a free PDF document viewer and creator with a rich feature set. Whether you're a consumer, employment, government agency, or educational organization, her …
WebJan 18, 2024 · According to its version, the Foxit PDF Reader application (previously named Foxit Reader) installed on the remote Windows host is prior to 12.1. It is, therefore affected by vulnerability: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. WebAccording to its version, the Foxit PDF Reader application (previously named Foxit Reader) installed on the remote Windows host is prior to 11.2.1. It is, therefore affected by multiple vulnerabilities: - Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by a heap ...
WebJan 16, 2024 · An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger ... WebMay 9, 2024 · Description. According to its version, the Foxit PDF Reader application (previously named Foxit Reader) installed on the remote Windows host is prior to 11.2.2. It is, therefore affected by multiple vulnerabilities: - Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash because of Unsigned32 …
WebDec 19, 2024 · Description. MCNC would like to make you aware of a CRITICAL vulnerability affecting Foxit PDF software on Windows OS. Currently there is no associated CVE. While there is no indication that this is actively being used in the wild, please consider prioritization of upgrading instances of Foxit in your environment. As a …
WebMay 7, 2024 · May 7, 2024 01:46 PM 0 Foxit Software, the company behind the highly popular Foxit Reader, has published security updates to fix a high severity remote code execution (RCE) vulnerability... palm desert business directoryWebDescription. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.1.0.52543. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JP2 images. palm desert breaking news nowWebSecurity updates available in Foxit PDF Editor for Mac 12.0.2 and Foxit PDF Reader for Mac 12.0.2 . Release date: November 1, 2024. Platform: macOS. Summary. Foxit has … sunderland councillors contact detailsWebIn Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability. palm desert ca accuweatherWebOct 3, 2024 · The remaining high-severity vulnerabilities in Foxit Reader were reported by Zero Day Initiative, and all have a CVSS score of 7.8 out of 10.0 on the CVSS scale, making them “high-severity.” sunderland council taxi knowledge testWebMay 31, 2024 · The vulnerability has been verified to exist in Foxit PDF Reader 11.2.2.53575, which was the most recent version at the time the advisory was written. The vulnerability was also verified in older Foxit PDF Reader versions. sunderland council dhp formWebJul 28, 2024 · July 28, 2024. Foxit Software this week released security updates for its PDF Reader and PDF Editor applications, to address multiple vulnerabilities, including some leading to remote code execution. Three of the vulnerabilities addressed by Foxit were identified by Cisco Talos researchers, all three leading to arbitrary code execution. sunderland council contact email