The good news is the vulnerability has been patched. This high-severity vulnerability was addressed with the release of Foxit Reader 10.1, and impacts Foxit Reader 10.8 and earlier versions.
An attacker needs to trick the user into opening a malicious file or site to trigger this vulnerability if the browser plugin extension is enabled. This will permit them to execute arbitrary code via precise memory control.Ī specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. How the Foxit Reader app and browser extensions handle certain annotation types determines the flaw, allowing attackers to abuse to craft malicious PDFs. Successful exploitation of such bugs can lead from program crashes and data corruption to the execution of arbitrary code on computers running the vulnerable software.
Foxit Software, the US and China-based PDF software developer, has recently released security updates to fix a high severity Remote Code Execution (RCE) vulnerability affecting the PDF reader.įoxit, who claims to have more than 560 million users located in more than 200 countries, announced that this security flaw could let threat actors execute malicious code on users’ Windows computers and potentially take control over them.Ĭisco Talos researcher Aleksandar Nikolic has unearthed the flaw in the V8 JavaScript engine used by Foxit Reader to display dynamic forms and interactive document elements.Īs reported by BleepingComputer, the vulnerability, dubbed CVE-2021-21822, originates from a Use After Free bug.
0 kommentar(er)
