CVE-2018-3843
published 2018-04-19CVE-2018-3843: An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049 parses files with associated file annotations. A specially…
PriorityP356high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
24.03%
97.6th percentile
An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049 parses files with associated file annotations. A specially crafted PDF document can lead to an object of invalid type to be dereferenced, which can potentially lead to sensitive memory disclosure, and possibly to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | foxit_reader | — | — |
| systemd_project | systemd | >= 0 < 229-4ubuntu21.27 | 229-4ubuntu21.27 |
| systemd_project | systemd | >= 0 < 237-3ubuntu10.38 | 237-3ubuntu10.38 |
| talos | foxit | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv4.7MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m673-jrm2-q2fh: An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9
ghsa_unreviewed·2022-05-13
CVE-2018-3843 [HIGH] CWE-704 GHSA-m673-jrm2-q2fh: An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9
An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049 parses files with associated file annotations. A specially crafted PDF document can lead to an object of invalid type to be dereferenced, which can potentially lead to sensitive memory disclosure, and possibly to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
OSV
systemd vulnerabilities
osv·2020-02-05·CVSS 4.7
CVE-2018-16888 systemd vulnerabilities
systemd vulnerabilities
It was discovered that systemd incorrectly handled certain PIDFile files.
A local attacker could possibly use this issue to trick systemd into
killing privileged processes. This issue only affected Ubuntu 16.04 LTS.
(CVE-2018-16888)
It was discovered that systemd incorrectly handled certain udevadm trigger
commands. A local attacker could possibly use this issue to cause systemd
to consume resources, leading to a denial of service. (CVE-2019-20386)
Jann Horn discovered that systemd incorrectly handled services that use the
DynamicUser property. A local attacker could possibly use this issue to
access resources owned by a different service in the future. This issue
only affected Ubuntu 18.04 LTS. (CVE-2019-3843, CVE-2019-3844)
Tavis Ormandy discovered that system
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
blogs_talos·2018-04-19·CVSS 8.8
CVE-2017-14458 [HIGH] Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
### Overview Talos is disclosing five vulnerabilities in Foxit PDF Reader.Foxit PDF Readeris a popular free program for viewing, creating, and editing PDF documents. It is commonly used as an alternative to Adobe Acrobat Reader and has a widely used browser plugin available. Update to the current version ofFoxit PDF Reader.
### DetailsVulnerabilities Discovered by Aleksandar Nikolic
#### TALOS-2017-0506 TALOS-2017-0506 / CVE-2017-14458 in an exploitable use-after-free vulnerability that exists specifically in the JavaScript engine of Foxit PDF Reader. When executing embedded JavaScript code, a document can be closed, which essentially frees up a lot of used objects, but the JavaScript can continue to execute. Taking advantage of this, a specially crafted PDF document can trigger a previo
Talos
Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
blogs_talos·2018-04-19·CVSS 8.8
[HIGH] Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
## Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
## Overview Talos is disclosing five vulnerabilities in Foxit PDF Reader. Foxit PDF Reader is a popular free program for viewing, creating, and editing PDF documents. It is commonly used as an alternative to Adobe Acrobat Reader and has a widely used browser plugin available. Update to the current version of Foxit PDF Reader .
## Details Vulnerabilities Discovered by Aleksandar Nikolic
## TALOS-2017-0506 TALOS-2017-0506 / CVE-2017-14458 in an exploitable use-after-free vulnerability that exists specifically in the JavaScript engine of Foxit PDF Reader. When executing embedded JavaScript code, a document can be closed, which essentially frees up a lot of used objects, but the JavaScript can continue to execute. Taking advant
http://www.securityfocus.com/bid/103942http://www.securitytracker.com/id/1040733https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0526http://www.securityfocus.com/bid/103942http://www.securitytracker.com/id/1040733https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0526
2018-04-19
Published