CVE-2024-9249

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader (affected versions not specified)

Description: The issue is related to a buffer overflow operation in the memory of Foxit PDF Reader, which can be exploited by opening a specially crafted PDF file. This allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files due to the lack of proper validation of user-supplied data, resulting in a read past the end of an allocated buffer.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.