HomePentest-Tools.com Logo

Foxit Reader Out of Bounds Read Local Information Disclosure Vulnerability (Windows) CVE-2016-8334

Severity
CVSSv3 Score
3.3
Vulnerability description

Foxit Reader is prone to an information disclosure vulnerability.

Risk description

A large out of bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR. Successful exploitation will allow local attackers to obtain sensitive information that may aid in launching further attacks.

Recommendation

Upgrade to Foxit Reader 8.1 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jan 6, 2017
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available