CVE-2019-5126

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader version 9.7.0.29435

Description A use-after-free issue in the JavaScript engine of Foxit PDF Reader can be exploited, allowing arbitrary code execution when a specially crafted PDF document is opened. This can happen when a user is tricked into opening a malicious file. Additionally, if the browser plugin extension is enabled, visiting a malicious site can also trigger the issue.

Recommendations For Foxit PDF Reader version 9.7.0.29435, consider disabling the JavaScript engine in the PDF reader as a temporary workaround until a patch is available. Avoid opening suspicious PDF files from untrusted sources, and restrict access to malicious websites when the browser plugin extension is enabled.