CVSS: 9.3EPSS: 4%CPEs: 12EXPL: 0CVE-2011-1908
https://notcve.org/view.php?id=CVE-2011-1908
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document. Desbordamiento de entero en el decodificador de tipo de letra 1 en el motor de FreeType en Foxit Reader antes de v4.0.0.0619 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (por caída de la aplicación) a través de una fuente modificada a mano en un documento PDF. • http://www.foxitsoftware.com/products/reader/security_bulletins.php#freetype http://www.microsoft.com/technet/security/advisory/msvr11-005.mspx http://www.securityfocus.com/bid/48359 https://exchange.xforce.ibmcloud.com/vulnerabilities/68145 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 5%CPEs: 23EXPL: 0CVE-2011-0332
https://notcve.org/view.php?id=CVE-2011-0332
Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom before 2.3.3.1112 allows remote attackers to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow. Desbordamiento de enteros en Foxit Reader anterior a v4.3.1.0218 y Foxit Phantom anterior a v2.3.3.1112 permite a atacantes remotos ejecutar código arbitrario a través de fragmentos ICC manipulados en un fichero PDF, lo que provoca un desbordamiento de búfer basado en heap. • http://secunia.com/advisories/43329 http://secunia.com/advisories/43440 http://secunia.com/secunia_research/2011-14 http://www.foxitsoftware.com/pdf/reader/security_bulletins.php#memory http://www.securitytracker.com/id?1025129 http://www.vupen.com/english/advisories/2011/0508 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 2%CPEs: 7EXPL: 3CVE-2010-1239 – Adobe Reader - Escape From '.PDF' Execute Embedded Executable
https://notcve.org/view.php?id=CVE-2010-1239
Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequence, a related issue to CVE-2009-0836. Foxit Reader anterior a v3.2.1.0401 permite a atacantes remotos (1) ejecutar programas locales de su elección a través de determinadas secuencias "/Type /Action /S /Launch" y (2) ejecutar programas de su elección embebidos en un documento PDF a través de secuencias "/Launch /Action" no especificadas. Relacionado con el CVE-2009-0836. • https://www.exploit-db.com/exploits/11987 http://blog.didierstevens.com/2010/03/29/escape-from-pdf http://blog.didierstevens.com/2010/03/31/escape-from-foxit-reader http://www.f-secure.com/weblog/archives/00001923.html http://www.foxitsoftware.com/announcements/2010420408.html http://www.foxitsoftware.com/pdf/reader/security.htm#0401 http://www.kb.cert.org/vuls/id/570177 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 6%CPEs: 2EXPL: 0CVE-2009-0836
https://notcve.org/view.php?id=CVE-2009-0836
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 1120 and 1301, does not require user confirmation before performing dangerous actions defined in a PDF file, which allows remote attackers to execute arbitrary programs and have unspecified other impact via a crafted file, as demonstrated by the "Open/Execute a file" action. Foxit Reader v2.3 anterior a Build 3902 y v3.0 anterior a Build 1506, incluidas la 1120 y 1301, no requiere la confirmación del usuario antes de realizar acciones peligrosas en un fichero PDF, lo que permite a atacantes remotos ejecutar programas de manera arbitraria y pudiendo producir un impacto sin especificar a través de un fichero manipulado, como se ha demostrado en la acción "Abrir/Ejecutar fichero". • http://blog.zoller.lu/2009/03/remote-code-execution-in-pdf-still.html http://lists.immunitysec.com/pipermail/dailydave/2010-April/006079.html http://secunia.com/advisories/34036 http://www.coresecurity.com/content/foxit-reader-vulnerabilities http://www.foxitsoftware.com/pdf/reader/security.htm#bypass http://www.securityfocus.com/archive/1/501623/100/0/threaded http://www.securityfocus.com/bid/34035 http://www.securitytracker.com/id?1021824 http://www.vupen.com/english/advisories/2009&#x • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 8%CPEs: 3EXPL: 0CVE-2009-0191
https://notcve.org/view.php?id=CVE-2009-0191
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a dereference of an uninitialized memory location. Foxit Reader v2.3 anterior a Build 3902 y v3.0 anterior a Build 1506, ademas de v3.0.2009.1301, no maneja adecuadamente un segmento del símbolo JBIG2 del diccionario sin nuevos símbolos, lo que permite atacantes remotos ejecutar código arbitrariamente a través de un fichero PDF manipulado que inicia una desreferencia y una localización de memoria no inicializada. • http://secunia.com/advisories/34036 http://secunia.com/secunia_research/2009-11 http://www.foxitsoftware.com/pdf/reader/security.htm#Processing http://www.securityfocus.com/archive/1/501590/100/0/threaded http://www.securityfocus.com/bid/34035 http://www.securitytracker.com/id?1021822 http://www.vupen.com/english/advisories/2009/0634 https://exchange.xforce.ibmcloud.com/vulnerabilities/49135 • CWE-94: Improper Control of Generation of Code ('Code Injection') •