SB2022110145 - Multiple vulnerabilities in Foxit PDF Reader and Editor for Mac
Published: November 1, 2022
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) NULL pointer dereference (CVE-ID: N/A)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error when handling certain JavaScripts. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
2) NULL pointer dereference (CVE-ID: N/A)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error when parsing certain PDF files whose colSpan attribute is set beyond the maximum length allowed. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
3) Out-of-bounds read (CVE-ID: N/A)
The vulnerability allows a remote attacker to crash the application.
The vulnerability exists due to a boundary condition when parsing U3D files. A remote attacker can create a specially crafted U3D file, trick the victim into opening it, trigger an out-of-bounds read error and crash the application.
4) Stack exhaustion (CVE-ID: N/A)
The vulnerability allows a remote attacker to crash the application.
The vulnerability exists due to a boundary condition when handling certain PDF files containing a field that is formatted as “Percent” with an overly large value, or due to the infinite recursion resulting from the incorrect hierarchy structure of nodes when handling certain PDF or XFA files.. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger a buffer overflow and crash the application.
Remediation
Install update from vendor's website.