Thursday, March 28, 2024

Multiple Arbitrary Code Execution Vulnerability in Foxit PDF Reader Affected 9.0.1.1049 and Earlier Versions

Multiple vulnerabilities reported in the Foxit PDF reader allows an attacker to execute the arbitrary code on the user’s system and obtain sensitive information. The vulnerability affects all the versions of Foxit Reader and Foxit PhantomPDF.

Foxit is the most popular free software for creating, editing and viewing PDF documents. Security researchers from Cisco Talos, Threat Response, Trend Micro’s Zero Day Initiative Foxit PDF Reader vulnerabilities.

CVE-2017-14458 – use-after-free Vulnerability that resides in JavaScript engine of Foxit PDF Reader, attackers could trigger this vulnerability with a specially crafted PDF document.

CVE-2017-17557 – Heap Buffer Overflow Remote Code Execution vulnerability that may crash the application.

CVE-2018-3842 – Uninitialized pointer vulnerability in the Javascript engine of Foxit PDF Reader that could result in remote code execution.

CVE-2018-3843 – Type confusion vulnerability in the way Foxit reader handles the files with associated extensions.

CVE-2018-3850 – the use-after-free vulnerability that resulting in sensitive memory disclosure or, potentially, arbitrary code execution.

CVE-2018-3853 – use-after-free vulnerability with javascript engine that lies in combinations of the ‘createTemplate’ and ‘closeDoc’ methods.

Also Read Creating and Analyzing a Malicious PDF File with PDF-Parser Tool

Assaf Baharav of Threat Response Research Team Addressed a potential issue where the application could be exposed to Remote Code Execution by abusing GoToE & GoToR Actions.

Ye Yint Min Thu htut Addressed a potential issue where the application could be exposed to Unsafe DLL Loading vulnerability that could be exploited by attackers to execute remote code.

Mitigations – Foxit PDF Reader

Foxit team released an update Foxit Reader and Foxit PhantomPDF. Users are highly recommended to update with new version 9.1 of Foxit Reader and Foxit PhantomPDF.

Website

Latest articles

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report highlighting...

Wireshark 4.2.4 Released: What’s New!

Wireshark stands as the undisputed leader, offering unparalleled tools for troubleshooting, analysis, development, and...

Zoom Unveils AI-Powered All-In-One AI Work Workplace

Zoom has taken a monumental leap forward by introducing Zoom Workplace, an all-encompassing AI-powered...

iPhone Users Beware! Darcula Phishing Service Attacking Via iMessage

Phishing allows hackers to exploit human vulnerabilities and trick users into revealing sensitive information...

2 Chrome Zero-Days Exploited at Pwn2Own 2024: Patch Now

Google has announced a crucial update to its Chrome browser, addressing several vulnerabilities, including...

The Moon Malware Hacked 6,000 ASUS Routers in 72hours to Use for Proxy

Black Lotus Labs discovered a multi-year campaign by TheMoon malware targeting vulnerable routers and...
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles