CVE-2016-8334
published 2017-01-06CVE-2016-8334: A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another…
PriorityP418low3.3CVSS 3.0
AVLACLPRNUIRSUCLINAN
EPSS
18.56%
96.9th percentile
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxit_software | foxit_reader | — | — |
| foxitsoftware | reader | — | — |
CVSS provenance
nvdv3.03.3LOWCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Foxit PDF Reader JBIG2 Parser Information Disclosure
blogs_talos·2016-10-18·CVSS 6.8
CVE-2016-8334 [MEDIUM] Vulnerability Spotlight: Foxit PDF Reader JBIG2 Parser Information Disclosure
Vulnerability discovered by Aleksandar Nikolic of Talos.
Talos has identified an information disclosure vulnerability in Foxit PDF Reader
(TALOS-2016-0201/CVE-2016-8334). A wrongly bounded call to `memcpy`, while parsing jbig2 segments within a PDF file, can be triggered in Foxit PDF Reader causing an out-of-bounds heap memory to be read into a buffer. The `memcpy` call is properly sized, but the source is smaller than the size argument, causing the adjacent memory to be copied into a buffer, where heap metadata, addresses and pointers can be copied and later reused, disclosing memory layout. Combined with another vulnerability, this information disclosure can be used to leak heap memory layout and bypass ASLR. Phishing campaigns commonly use PDF files, as malicious attachments or linked
Talos
Vulnerability Spotlight: Foxit PDF Reader JBIG2 Parser Information Disclosure
blogs_talos·2016-10-18·CVSS 6.8
CVE-2016-8334 [MEDIUM] Vulnerability Spotlight: Foxit PDF Reader JBIG2 Parser Information Disclosure
## Vulnerability Spotlight: Foxit PDF Reader JBIG2 Parser Information Disclosure
Vulnerability discovered by Aleksandar Nikolic of Talos.
Talos has identified an information disclosure vulnerability in Foxit PDF Reader ( TALOS-2016-0201 /CVE-2016-8334). A wrongly bounded call to `memcpy`, while parsing jbig2 segments within a PDF file, can be triggered in Foxit PDF Reader causing an out-of-bounds heap memory to be read into a buffer. The `memcpy` call is properly sized, but the source is smaller than the size argument, causing the adjacent memory to be copied into a buffer, where heap metadata, addresses and pointers can be copied and later reused, disclosing memory layout. Combined with another vulnerability, this information disclosure can be used to leak heap memory layout and bypass
2017-01-06
Published