[Forgot Password]
Login  Register Subscribe

25354

 
 

132804

 
 

133291

 
 

909

 
 

108483

 
 

152

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in Foxit Reader and Foxit PhantomPDF - CVE-2018-17610

ID: oval:org.secpod.oval:def:47674Date: (C)2018-10-01   (M)2019-10-28
Class: VULNERABILITYFamily: windows




The host is installed with Foxit Reader before 9.3.0.10826 or Foxit PhantomPDF before 9.3.0.10826 and is prone to a denial of service vulnerability. A flaw is present in the applications which fails to properly handle properties of Annotation objects. Successful exploitation allow remote attackers to attackers to execute arbitrary code or cause a denial of service (use-after-free).

Platform:
Microsoft Windows Server 2012 R2
Microsoft Windows 8.1
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8
Microsoft Windows Server 2012
Product:
Foxit Phantom
Foxit Reader
Reference:
CVE-2018-17610
CVE    1
CVE-2018-17610
CPE    2
cpe:/a:foxit:phantom:::x86
cpe:/a:foxit:reader:::x86

© SecPod Technologies