HomePentest-Tools.com Logo

Foxit Reader Multiple Arbitrary Code Execution and DoS Vulnerabilities Nov17 (Windows) CVE-2017-10947CVE-2017-10948CVE-2017-10946

Severity
CVSSv3 Score
8.8
Vulnerability description

Foxit Reader is prone to arbitrary code execution and denial-of-service vulnerabilities.

Risk description

Multiple flaws exist due to the lack of validating the existence of an object prior to performing operations on the object. Successful exploitation will allow remote attackers to execute arbitrary code or can cause denial of service condition.

Recommendation

Upgrade to Foxit Reader version 8.3 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Oct 31, 2017
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available