PT-2015-7822 · Foxit · Foxit Reader

Abdulaziz Hariri

Published

2015-12-15

Updated

2016-04-19

CVE-2015-8843

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Foxit Reader versions 6.1 through 6.2.x Foxit Reader versions 7.x before 7.2.2

Description The issue allows local users to gain privileges by writing crafted data to a shared memory region, which triggers memory corruption when an update to the Cloud plugin is available.

Recommendations For Foxit Reader versions 6.1 through 6.2.x, update to a version after 6.2.x. For Foxit Reader versions 7.x before 7.2.2, update to version 7.2.2 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2015-8843

ZDI-15-640

Affected Products

Foxit Reader

PT-2015-7822 · Foxit · Foxit Reader

CVE-2015-8843

Weakness Enumeration

Related Identifiers

Affected Products

References · 5