CVE-2018-3842

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader version 9.0.1.1049

Description The issue is related to an uninitialized pointer in the JavaScript engine. A specially crafted PDF document can cause a dereference of this pointer, potentially leading to arbitrary code execution if the pointer is under attacker control. This can be triggered by opening a malicious file or, if the browser plugin extension is enabled, by visiting a malicious site.

Recommendations For Foxit PDF Reader version 9.0.1.1049, consider disabling the JavaScript engine in the PDF reader as a temporary workaround until a patch is available. Additionally, avoid opening PDF files from untrusted sources and disable the browser plugin extension to minimize the risk of exploitation.