N/A

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.0.1.35811. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the Annotation objects. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-11657.

N/A

释放后使用

Foxit Reader 资源管理错误漏洞

Foxit Reader是中国福昕（Foxit）公司的一款PDF文档阅读器。 Foxit阅读器 10.0.1.35811版本存在安全漏洞，该漏洞源于在对对象执行操作之前没有验证对象的存在性。攻击者可利用该漏洞可以利用此漏洞在当前进程上下文中执行代码。

N/A

N/A