cbcvebase.
CVE-2008-1104
published 2008-05-21

CVE-2008-1104: Stack-based buffer overflow in Foxit Reader before 2.3 build 2912 allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file…

PriorityP344critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
22.69%
97.4th percentile
Stack-based buffer overflow in Foxit Reader before 2.3 build 2912 allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file, related to the util.printf JavaScript function and floating point specifiers in format strings.

Affected

6 ranges
VendorProductVersion rangeFixed in
adobeacrobat<= 8.1.2
adobeacrobat_reader<= 8.1.2
foxitsoftwarefoxit_reader<= 2.3
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
oraclesolaris

CVSS provenance

nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.