Foxit Reader FlateDecode Heap Buffer Overflow Remote Code Execution Vulnerability
Foxit Reader FlateDecode Heap Buffer Overflow Remote Code Execution Vulnerability
Release date:
Updated on:
Affected Systems:
Foxit Reader
Description:
Foxit Reader is a small PDF document viewer and print program.
The FlateDecode of Foxit Reader has a security vulnerability. Remote attackers can exploit this vulnerability to execute application code in the current process of the affected application. The fixed FlateDecode length in the PDF document can trigger heap buffer overflow.
<* Source: kdot
Link: http://www.zerodayinitiative.com/advisories/ZDI-15-644/
*>
Suggestion:
Vendor patch:
Foxit
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://www.foxitsoftware.com/support/security-bulletins.php
This article permanently updates the link address: