Foxit PDF Reader Flaw Let Attackers Execute Remote Code

Foxit Application has launched an change for its Foxit PDF Reader 2024.1 and Foxit PDF Editor 2024.1 for Windows, addressing extreme security vulnerabilities that would likely enable attackers to elevate out a long way-off code on a person’s design.

The vulnerabilities affected earlier versions of Foxit Reader and Foxit PhantomPDF, particularly version 10.0.0.35798 and earlier for Windows.

The company has acknowledged extra than one security components, at the side of a Heap Buffer Overflow Some distance away Code Execution vulnerability and a Form Confusion Some distance away Code Execution vulnerability.

These vulnerabilities were identified by security researchers Steven Seeley of Qihoo 360 Vulcan Workforce and Rene Freingruber, alongside with Patrick Wollgast working with Pattern Micro Zero Day Initiative.

Foxit PDF Reader Flaws

The Heap Buffer Overflow vulnerability occurs when the applying fails to implement a fault-tolerance mechanism whereas processing corrupted records interior a picture.

The Form Confusion vulnerability would possibly possibly possibly well well also just be exploited when the applying incorrectly processes PDF objects with out honest validation.

Foxit PDF Editor for Mac (previously named Foxit PhantomPDF Mac) 2023.3.0.63083 and all old 2023.x versions are struggling from the Employ-After-Free vulnerability.

Customers are urged to interchange with Foxit PDF Editor for Mac 2024.1 and Foxit PDF Reader for Mac 2024.1

Foxit has urged users to interchange their applications to the most fresh versions to mitigate these risks.

The updates are designed to forestall the exploitation of these vulnerabilities, which would possibly possibly possibly well lead to info disclosure or enable attackers to rob regulate of an affected design.

As indicated by old updates and advisories, the company has a history of addressing security components in its instrument.

Foxit emphasizes the importance of updating to the most fresh instrument versions and declaring exact settings, just like enabling Safe Studying Mode, to provide protection to against doable cyber threats.

Following the company’s change directions, users can produce the most fresh versions of Foxit PDF Reader and Foxit PDF Editor.

You would possibly possibly maybe well also block malware, at the side of Trojans, ransomware, spyware and adware, rootkits, worms, and zero-day exploits, with Perimeter81 malware safety. All are extremely rotten, can wreak havoc, and hurt your community.

Preserve updated on Cybersecurity info, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter