Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Foxit Reader < 7.3.4 Multiple Vulnerabilities

High

Synopsis

The remote host has been observed running a version of Foxit Reader that is subject to multiple attack vectors.

Description

Versions of Foxit Reader prior to 7.3.4 are affected by the following vulnerbilities :

- A use-after-free error exists that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. (OSVDB 136000) - A use-after-free condition exists that is triggered when handling FlateDecode streams. With a specially crafted PDF file, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code. (OSVDB 136001) - A use-after-free condition exists that is triggered when handling object revision numbers. With a specially crafted PDF file, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code. (OSVDB 136002) - An out-of-bounds read flaw exists that is triggered when decoding GIF images during PDF conversion. This may allow a context-dependent attacker to potentially disclose sensitive memory contents. (OSVDB 136003) - A use-after-free condition exists that is triggered during the handling of XFA re-layouts. This may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. (OSVDB 136004) - A use-after-free condition exists related to the TimeOut function. With a specially crafted PDF file, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code. (OSVDB 136005) - A use-after-free condition exists that is triggered when handling JavaScript API calls while closing a document. With a specially crafted PDF file, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code. (OSVDB 136006) - A flaw exists that is triggered during the parsing of content streams. This may allow a context-dependent attacker to crash the process. (OSVDB 136007) - A flaw exists that is triggered when recursively triggering PDF format errors. This may allow a context-dependent attacker to cause the application to stop responding. (OSVDB 136008) - An out-of-bounds read flaw exists that is triggered when decoding JPEG images during PDF conversion. This may allow a context-dependent attacker to potentially disclose sensitive memory contents. (OSVDB 136251) - An out-of-bounds read flaw exists that is triggered when decoding BMP images during PDF conversion. This may allow a context-dependent attacker to potentially disclose sensitive memory contents. (OSVDB 136252)

Solution

Upgrade Foxit Reader to version 7.3.4 or later.