E18-5kws1
CVSS:
8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
False Positive:
f
Variants:
2
Year:
2018
Description
This strike exploits a use-afer-free vulnerability in Foxit Reader.
This vulnerability is due to improper handling of an annotation object.
A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted PDF file, resulting in possible execution of arbitrary code.
CVE
References
Metasploit
http://www.zerodayinitiative.com/advisories/ZDI-18-760
Zdi
18-760