Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:FOXIT-PDF-DOS |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Foxit PDF Reader JBIG2 Symbol Dictionary Out of Bounds Read |
Release Date |
2017/03/15 |
Update Number |
2838 |
Supported Platforms |
idp-4.1+, isg-3.5.141818+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Foxit PDF Reader JBIG2 Symbol Dictionary Out of Bounds Read
An out-of-bounds vulnerability has been reported in the JBIG2 component of Foxit PDF Reader. Successful exploitation could result in disclosure of information which could be used to further compromise the target system.
Extended Description
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.
Affected Products
- Foxitsoftware reader 8.0.2.805
References
- BugTraq: 93799
- CVE: CVE-2016-8334