Stack-based Buffer Overflow in Foxit Reader SDK (ActiveX) 5.4.0.1031 Allows Remote Code Execution via Crafted PDF Files

Stack-based Buffer Overflow in Foxit Reader SDK (ActiveX) 5.4.0.1031 Allows Remote Code Execution via Crafted PDF Files

CVE-2018-19447 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A stack-based buffer overflow can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing the URI string. An attacker can leverage this to gain remote code execution.

Learn more about our Web Application Penetration Testing UK.