CVE-2011-3691 — Untrusted Search Path in Foxit Reader

CWE-426 — Untrusted Search Path3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
7.6%
top 8.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Foxitsoftware Foxit Reader
Timeline
PublishedSep 27
Latest updateMay 17

Description

Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-2pvp-px52-q92c: Untrusted search path vulnerability in Foxit Reader before 5↗2022-05-17
â–¶
CVEList
CVE-2011-3691: Untrusted search path vulnerability in Foxit Reader before 5↗2011-09-27
â–¶
CVE-2011-3691 — Untrusted Search Path in Foxit Reader | cvebase