Foxit Reader < 184.108.40.2061 Memory Corruption RCE
High Nessus Plugin ID 57050
SynopsisA PDF viewer installed on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of Foxit Reader installed on the remote Windows host is prior to 220.127.116.111. It is, therefore, affected by a memory corruption issue due to a cross-border assignment of an array when opening a specially crafted PDF file. An attacker can exploit this, by tricking a user into opening a crafted PDF file, to execute arbitrary code with the user's privileges.
SolutionUpgrade to Foxit Reader version 18.104.22.1681 or later.