CVE-2018-19452

by Fred · 07/06/2019

A use after free in the TextBox field Mouse Enter action in IReader_ContentProvider can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031. An attacker can leverage this to gain remote code execution. Relative to CVE-2018-19444, this has a different free location and requires different JavaScript code for exploitation.

Date published : 2019-06-07

http://www.securityfocus.com/bid/108692

https://www.foxitsoftware.com/support/security-bulletins.php

CVE-2018-19452

Similar

Recent Posts

Categories

CVE-2018-19452

Share this:

Similar

Recent Posts

Categories

Tags