(CVE-2021-21831, CVE-2021-34832) - A remote code execution vulnerability exists in Foxit PDF Editor due to a use-after-free error when handling certain form elements. An unauthenticated, remote attacker can exploit these, by convincing a user to open a malicious file or visit a malicious site with the browser plugin extension enabled, to cause execute arbitrary code in the context of the current user. It is, therefore, affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilities exist in Foxit PDF Editor due to use-after-free errors when handling certain Javascripts. Description The version of Foxit PDF Editor for Mac (previously named Foxit PhantomPDF for Mac) installed on the remote macOS host is prior to 11.0.1. Synopsis The remote macOS host is affected by multiple vulnerabilities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |