Foxit Reader Multiple Buffer Overflow Vulnerabilities Network Vulnerability

Summary

The host is installed with Foxit Reader and is prone to multiple buffer overflow vulnerabilities.

Impact

Successful exploitation could allow the attackers to execute arbitrary code in the context of an application that uses the affected library. Failed exploit attempts will likely result in denial-of-service conditions. Impact Level: Application

Solution

Upgrade to the Foxit Reader version 4.1.1 or later, For updates refer to http://www.foxitsoftware.com/downloads/index.php

Insight

Multiple flaws are due to an error in the handling of 'PDF' documents. It is not properly rendering the PDF documents.

Affected

Foxit Reader version prior to 4.1.1 (4.1.1.0805)

References

http://www.foxitsoftware.com/pdf/reader/security_bulletins.php#iphone
http://www.securityfocus.com/bid/42241/
http://www.us-cert.gov/current/index.html#foxit_releases_foxit_reader_4

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Terminal Server Client RDP File Processing BOF Vulnerabilities
Dnsmasq TFTP Service multiple vulnerabilities
BigAnt IM Server 'USV' Request Buffer Overflow Vulnerability
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
VLC Media Player OGG Demuxer Buffer Overflow Vulnerability (Windows)

Take action and discover your vulnerabilities