N/A

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

N/A

N/A

Foxit PDF Reader JavaScript引擎安全漏洞

Foxit PDF Reader是中国福昕（Foxit）软件公司的一款PDF文档阅读器。JavaScript engine是其中的一个JavaScript脚本引擎。 Foxit PDF Reader 9.1.0.5096版本中的JavaScript引擎存在释放后重用漏洞。攻击者可借助特制的PDF文档利用该漏洞执行任意代码。

N/A

N/A