ID CVE-2011-1908
Summary Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document.
References
Vulnerable Configurations
  • cpe:2.3:a:foxitsoftware:foxit_reader:3.1.3
    cpe:2.3:a:foxitsoftware:foxit_reader:3.1.3
  • cpe:2.3:a:foxitsoftware:foxit_reader:3.1.1
    cpe:2.3:a:foxitsoftware:foxit_reader:3.1.1
  • cpe:2.3:a:foxitsoftware:foxit_reader:3.2.1
    cpe:2.3:a:foxitsoftware:foxit_reader:3.2.1
  • Foxitsoftware Foxit Reader 3.1.4
    cpe:2.3:a:foxitsoftware:foxit_reader:3.1.4
  • Foxitsoftware Foxit Reader 2.3
    cpe:2.3:a:foxitsoftware:foxit_reader:2.3
  • Foxitsoftware Foxit Reader 3.0
    cpe:2.3:a:foxitsoftware:foxit_reader:3.0
  • Foxitsoftware Foxit Reader 2.2
    cpe:2.3:a:foxitsoftware:foxit_reader:2.2
  • Foxitsoftware Foxit Reader 2.0
    cpe:2.3:a:foxitsoftware:foxit_reader:2.0
  • Foxitsoftware Foxit Reader 3.1
    cpe:2.3:a:foxitsoftware:foxit_reader:3.1
  • Foxitsoftware Foxit Reader 3.3.1
    cpe:2.3:a:foxitsoftware:foxit_reader:3.3.1
  • Foxitsoftware Foxit Reader 3.2
    cpe:2.3:a:foxitsoftware:foxit_reader:3.2
  • Foxitsoftware Foxit Reader 4.0
    cpe:2.3:a:foxitsoftware:foxit_reader:4.0
CVSS
Base: 9.3 (as of 08-11-2016 - 11:08)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
NASL family Windows
NASL id FOXIT_READER_4_0_0_0619.NASL
description The version of Foxit Reader installed on the remote Windows host is prior to 4.0.0.0619. It is, therefore, affected by a remote code execution vulnerability in the FreeType engine due to an integer overflow condition in the Type 1 font decoder. An attacker can exploit this, by tricking a user into opening a crafted PDF file, to cause a denial of service or to execute arbitrary code with the user's privileges.
last seen 2019-02-21
modified 2018-11-15
plugin id 55422
published 2011-06-24
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=55422
title Foxit Reader < 4.0.0.0619 FreeType Engine RCE
refmap via4
bid 48359
confirm http://www.foxitsoftware.com/products/reader/security_bulletins.php#freetype
misc http://www.microsoft.com/technet/security/advisory/msvr11-005.mspx
xf foxit-reader-freetype-overflow(68145)
Last major update 08-11-2016 - 12:47
Published 24-06-2011 - 16:55
Last modified 16-08-2017 - 21:34
Back to Top