Уязвимости Угрозы

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA60004
Multiple vulnerabilities in Foxit PDF Reader

Обновлено: 14/09/2023
Дата обнаружения
 12/09/2023
Уровень угрозы
 High
Описание

Multiple vulnerabilities were found in Foxit PDF Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Code execution vulnerability can be exploited remotely to execute arbitrary code.
  2. Use after free vulnerability in Annotation can be exploited to obtain sensitive information.
  3. Out of bounds read vulnerability in AcroForm can be exploited to obtain sensitive information.
  4. Use after free vulnerability in Annotation can be exploited to execute arbitrary code.
  5. Use after free vulnerability in templates can be exploited to obtain sensitive information.
  6. Use after free vulnerability in PDF File Parsing can be exploited to execute arbitrary code.
  7. Out of bounds read vulnerability in XFA Doc Object can be exploited to obtain sensitive information.
  8. Use after free vulnerability in XFA Doc Object can be exploited to execute arbitrary code.
  9. Use after free vulnerability in Doc Object can be exploited to execute arbitrary code.
Пораженные продукты

Foxit PDF Reader earlier than 2023.2.0.21408
Решение

Update to the latest version
Download Foxit Reader
Первичный источник обнаружения
 Security updates available in Foxit PDF Reader 2023.2 and Foxit PDF Editor 2023.2
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]
Связанные продукты
 Foxit Reader
Foxit Reader Enterprise
Узнай статистику распространения уязвимостей в твоем регионе
© 2023 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy

Up