Short Name |
HTTP:FOXIT-PDF-DOS |
---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Foxit PDF Reader JBIG2 Symbol Dictionary Out of Bounds Read |
Release Date |
2017/03/15 |
Update Number |
2838 |
Supported Platforms |
idp-4.1+, isg-3.5.141818+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
An out-of-bounds vulnerability has been reported in the JBIG2 component of Foxit PDF Reader. Successful exploitation could result in disclosure of information which could be used to further compromise the target system.
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.