Computer Security
[EN] securityvulns.ru no-pyccku


FoxIT Reader multiple security vulnerabilities
Published:09.03.2009
Source:
SecurityVulns ID:9716
Type:client
Threat Level:
5/10
Description:Uninitialized pointer dereference on PDF JBIG2 dictionary parsing, code execution, buffer overflow.
Affected:FOXIT : Foxit Reader 3.0
CVE:CVE-2009-0191 (Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a dereference of an uninitialized memory location.)
Original documentdocumentSECUNIA, Secunia Research: Foxit Reader JBIG2 Symbol Dictionary Processing Vulnerability (09.03.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod