Description
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service.
Below is a complete list of vulnerabilities:
- Heap buffer overflow vulnerability can be exploited remotely to execute arbitrary code.
- Information disclosure vulnerability can be exploited remotely via special crafted file to obtain sensitive information and potentially cause denial of service.
- Out of bounds read vulnerability can be exploited remotely to obtain sensitive information and potentially cause denial of service.
- Type confusion vulnerability can be exploited remotely to potentially cause denial of service.
- Use after free vulnerability can be exploited via special crafted webpage to potentially cause denial of service and obtain sensitive information.
Original advisories
Related products
CVE list
- CVE-2020-12248 critical
- CVE-2020-11493 critical
- CVE-2020-12247 high
- CVE-2020-15638 critical
- CVE-2020-15637 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!