Here's the page we think you wanted. See search results instead:

Toggle Menu

Chat Live

Confirm Your Country or Area

Please Confirm

Confirm your country to access relevant pricing, special offers, events, and contact information.

What are you looking for?

M9484C VXG Radar Scene Emulator AresONE-S 400GE Explore products Find a solution Get technical support Take a class Find us at events Premium used equipment KeysightCare Buy online

No product matches found - System Exception

Foxit Reader Annotations noteIcon Use After Free

Strike ID:

E18-5kww1

CVSS:

8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

False Positive:

Variants:

Year:

2018

Description

This strike exploits a use-after-free vulnerability in the JavaScript engine of Foxit PDF Reader. This vulnerability is triggered when accessing an annotation's noteIcon property while the annotation object is being destroyed. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted PDF file, resulting in possible execution of arbitrary code.

CVE

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-14304

Metasploit

http://www.zerodayinitiative.com/advisories/ZDI-18-764

Zdi

18-764

Welcome

What are you looking for?

Foxit Reader Annotations noteIcon Use After Free

Description

CVE

Metasploit

Zdi