Multiple vulnerabilities in Foxit Reader

Описание

Multiple buffer overflow vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities locally via specially designed .xps file to cause a denial of service or execute arbitrary code.

---

Technical details

This vulnerabilities are related to:

1. «Data from Faulting Address controls subsequent Write Address starting at frdvpr_drv!DrvQueryDriverInfo+0x000000000002c851.»;
2. «Data from Faulting Address controls subsequent Write Address starting at msvcrt!memmove+0x0000000000000158.».

Первичный источник обнаружения

• CVE-2017-15771
  CVE-2017-15770
  

Связанные продукты

• Foxit-Reader

Список CVE

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com