Privilege Escalation via FoxitCloudUpdateService in Foxit Reader

Privilege Escalation via FoxitCloudUpdateService in Foxit Reader

CVE-2015-8843 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges by writing crafted data to a shared memory region, which triggers memory corruption.

Learn more about our Cloud Audit.