Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable out-of-bounds read vulnerability exists in the handling of certain XFA element attributes of Foxit Software's PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger an out-of-bounds read, which can disclose sensitive memory content and aid in exploitation when coupled with another vulnerability. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Foxit Reader和PhantomPDF for Windows 缓冲区错误漏洞
Vulnerability Description
Foxit Reader for Windows是中国福昕(Foxit)软件公司的一款基于Windows平台的PDF文档阅读器。PhantomPDF for Windows是它的商业版。 基于Windows平台的Foxit Reader 9.3.0.10826及之前版本和PhantomPDF 9.3.0.10826及之前版本中对XFA元素属性的处理存在越界读取漏洞。攻击者可通过诱使用户打开恶意的文件利用该漏洞泄露敏感的内存内容。
CVSS Information
N/A
Vulnerability Type
N/A