KLA10724
Code execution vulnerability in Foxit products
Updated: 03/15/2019
Detect date
?
12/16/2015
Severity
?
High
Description

Multiple use-after-free vulnerabilities were found in Foxit products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed PDF document.


Technical details

Vulnerabilities related to Print method and App object handling.

Affected products

Foxit Reader versions earlier than 7.2.2
Foxit PhantomPDF versions earlier than 7.2.2

Solution

Update to the latest version
Foxit software download page

Impacts
?
ACE 
[?]
CVE-IDS
?