KLA12598
Multiple vulnerabilities in Foxit Reader

Обновлено: 08/08/2022
Дата обнаружения
29/07/2022
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Null Pointer Dereference vulnerability can be exploited to cause denial of service.
  2. Out of bounds memory read vulnerability can be exploited to obtain sensitive information.
  3. Use after free vulnerability can be exploited remotely to execute arbitrary code.
  4. Type Confusion vulnerability can be exploited remotely to execute arbitrary code.
  5. Memory corruption vulnerability can be exploited remotely to execute arbitrary code.
  6. Use after free vulnerability can be exploited to obtain sensitive information.
  7. Out of bounds memory read vulnerability can be exploited remotely to execute arbitrary code.
Пораженные продукты

Foxit PDF Reader earlier than 12.0.1

Решение

Update to the latest version
Download Foxit Reader

Первичный источник обнаружения
Security updates available in Foxit PDF Reader 12.0.1 and Foxit PDF Editor 12.0.1
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

DoS 
[?]
Связанные продукты
Foxit Reader
Foxit Reader Enterprise
Узнай статистику распространения уязвимостей в твоем регионе