CVE-2009-0191 — Code Injection in Foxit Reader

CWE-94 — Code Injection CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources

Severity

9.3CRITICALNVD

EPSS

1.0%

top 23.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Foxitsoftware Foxit Reader

Timeline

PublishedMar 10

Latest updateMay 2

Description

Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a dereference of an uninitialized memory location.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDfoxitsoftware/foxit_reader2.3, 3.0, 3.0.2009.1301+2

Patches

Patch: www.foxitsoftware.com ↗Patch: www.vupen.com ↗Patch: www.foxitsoftware.com ↗

🔴Vulnerability Details

GHSA

GHSA-mqwp-74jm-r32p: Foxit Reader 2↗2022-05-02

▶

CVEList

CVE-2009-0191: Foxit Reader 2↗2009-03-10

▶

📐Framework References

CWE

Improper Restriction of Operations within the Bounds of a Memory Buffer↗

▶

💬Community

Bugzilla

CVE-2009-5066 JBoss: twiddle.sh accepts credentials as command line arguments, exposing them to other local users via a process listing↗2012-07-24

▶