SB2017030101 - Multiple vulnerabilities in Foxit Reader and PhantomPDF

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017030101

SB2017030101 - Multiple vulnerabilities in Foxit Reader and PhantomPDF

Published: March 1, 2017

Security Bulletin ID SB2017030101
Severity
High
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 80% Low 20%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Memory corruption (CVE-ID: N/A)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing .pdf files. A remote attacker can create a specially crafted .pdf file, trick the victim into opening it, cause memory corruption and r execute arbitrary code on the target system with privileges of the current user.

Successful exploitation of the vulnerability may result in complete compromise of vulnerable system.


2) NULL pointer dereference (CVE-ID: N/A)

The vulnerability allows a remote attacker to crash the application.

The vulnerability exists due to a NULL pointer dereference error when processing .pdf files. A remote attacker can create a specially crafted .pdf file, trick the victim into opening it, cause NULL pointer dereference and crash the affected application.

Successful exploitation of the vulnerability may result in denial of service attack.


3) Out-of-bounds read (CVE-ID: N/A)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing .pdf files. A remote attacker can create a specially crafted .pdf file, trick the victim into opening it, cause out-of-bounds read and gain access to potentially sensitive information or execute arbitrary code on the target system with privileges of the current user.

Successful exploitation of the vulnerability may result in complete compromise of vulnerable system.


4) Type confusion (CVE-ID: N/A)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a type confusion error when processing .pdf files. A remote attacker can create a specially crafted .pdf file, trick the victim into opening it and execute arbitrary code on the target system with privileges of the current user.

Successful exploitation of the vulnerability may result in complete compromise of vulnerable system.


5) Use-after-free (CVE-ID: N/A)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a use-after-free error when processing .pdf files. A remote attacker can create a specially crafted .pdf file, trick the victim into opening it and execute arbitrary code on the target system with privileges of the current user.

Successful exploitation of the vulnerability may result in complete compromise of vulnerable system.


Remediation

Install update from vendor's website.

References