Kaspersky Threats — La page que vous recherchez est introuvable.<br>Mais vous pouvez consulter les descriptions de nos dernières vulnérabilités et menaces.

Description

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service.

Below is a complete list of vulnerabilities:

Out of bounds read vulnerability can be exploited remotely to execute arbitrary code and obtain sensitive information.
Use after free vulnerability can be exploited remotely to execute arbitrary code.
Code execution vulnerability in Doc object can be exploited remotely to execute arbitrary code.
Type confusion vulnerability can be exploited to cause denial of service and execute arbitrary code.
Use after free vulnerability in AcroForm Doc can be exploited remotely to execute arbitrary code.
Type confusion vulnerability in Annotation can be exploited to cause denial of service.
Out of bounds read vulnerability in Doc can be exploited remotely to obtain sensitive information.
Out of bounds read vulnerability in File Parser can be exploited remotely to obtain sensitive information.
Use after free vulnerability in AcroForm Signature can be exploited remotely to execute arbitrary code.
Out of bounds read vulnerability in combobox can be exploited remotely to obtain sensitive information.
Use after free vulnerability in Signature can be exploited remotely to execute arbitrary code.
Out of bounds read vulnerability in AcroForm Doc can be exploited remotely to obtain sensitive information.
Out of bounds read vulnerability in Bookmark can be exploited remotely to obtain sensitive information.
Out of bounds read vulnerability in AcroForm out-of-bounds can be exploited remotely to obtain sensitive information.
Use after free vulnerability in AcroForm Doc Object can be exploited remotely to execute arbitrary code.

Fiches de renseignement originales

Security updates available in Foxit PDF Reader 2023.3 and Foxit PDF Editor 2023.3

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Produits associés

Liste CVE

CVE-2023-41257
critical
CVE-2023-32616
critical
CVE-2023-35985
critical
CVE-2023-40194
critical
CVE-2023-38573
critical
CVE-2023-51556
critical
CVE-2023-51560
critical
CVE-2023-51555
warning
CVE-2023-51561
high
CVE-2023-51552
critical
CVE-2023-51550
warning
CVE-2023-51554
warning
CVE-2023-51557
critical
CVE-2023-51558
warning
CVE-2023-51553
warning
CVE-2023-51562
warning
CVE-2023-51551
critical
CVE-2023-51549
critical
CVE-2023-51559
warning

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com

Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !