KLA10938
Information disclosure and bypass security restrictions vulnerability in Foxit Reader
Updated: 06/01/2019
Detect date
?
01/10/2017
Severity
?
Warning
Description

A large out-of-bounds read vulnerability was found in Foxit PDF Reader 8.0.2.805. By exploiting this vulnerability malicious users can possibly obtain sensitive information. In combination with another vulnerability, this one can be used to leak heap memory and in bypassing ASLR. This vulnerability can be exploited remotely via a specially designed JBIG2 file.

Affected products

Foxit PDF Reader 8.0.2.805

Solution

Update to the latest version
Download Foxit Reader

Original advisories

TALOS-2016-0201

Impacts
?
OSI 
[?]

SB 
[?]
CVE-IDS
?
CVE-2016-83344.3Warning