CVE-2020-35990

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader version 10.1.0.37527

Description The issue is a Buffer Overflow vulnerability in the cFilenameInit parameter in the browseForDoc function, which allows local attackers to cause a denial of service (DoS) via a crafted .pdf file. This vulnerability can be exploited by attackers to disrupt the service.

Recommendations For Foxit PDF Reader version 10.1.0.37527, consider disabling the browseForDoc function or restricting the use of the cFilenameInit parameter until a patch is available. As a temporary workaround, avoid using crafted .pdf files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.