Humpty Posted May 24, 2008 Share Posted May 24, 2008 Description:Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the "util.printf()" JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in version 2.3 build 2825. Other versions may also be affected. Solution: The vulnerability is fixed in upcoming version 2.3 build 2912. Provided and/or discovered by: Dyon Balding, Secunia Research. Secunia Article Link to comment Share on other sites More sharing options...
YoKenny Posted May 24, 2008 Share Posted May 24, 2008 Fixed with its built in updater to version 2.3 build 2923 "Education is what remains after one has forgotten everything he learned in school." - Albert Einstein IE7Pro user Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now