CVE-2018-3853

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader version 9.0.1.1049

Description A use-after-free issue in the JavaScript engine of Foxit PDF Reader can be exploited by opening a specially crafted PDF document, potentially leading to arbitrary code execution. An attacker must trick the user into opening the malicious file to trigger this issue. If the browser plugin extension is enabled, visiting a malicious site can also trigger the issue.

Recommendations For Foxit PDF Reader version 9.0.1.1049, consider disabling the JavaScript engine in the PDF reader as a temporary workaround until a patch is available. Additionally, avoid opening PDF documents from untrusted sources and disable the browser plugin extension to minimize the risk of exploitation.