漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Stack exhaustion caused by cyclic references in Foxit PDF Editor/Reader
Vulnerability Description
The application does not detect or guard against cyclic PDF object references while handling JavaScript in PDF. When pages and annotations are crafted that reference each other in a loop, passing the document to APIs (e.g., SOAP) that perform deep traversal can cause uncontrolled recursion, stack exhaustion, and application crashes.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的递归
Vulnerability Title
Foxit PDF Reader和Foxit PDF Editor 安全漏洞
Vulnerability Description
Foxit PDF Reader和Foxit PDF Editor都是中国福昕(Foxit)公司的产品。Foxit PDF Reader是一款PDF阅读器。Foxit PDF Editor是一款PDF编辑器。 Foxit PDF Reader和Foxit PDF Editor存在安全漏洞,该漏洞源于处理PDF中的JavaScript时未检测或防范循环PDF对象引用,可能导致特制文档引发不受控制的递归、堆栈耗尽和应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A