Foxit Patches Several Code Execution Vulnerabilities in PDF Reader By Orbit Brain November 11, 2022 0 339 views Cyber Security News House › VulnerabilitiesFoxit Patches A number of Code Execution Vulnerabilities in PDF ReaderBy Ionut Arghire on November 11, 2022TweetCommon PDF doc reader Foxit Reader has been up to date to deal with a number of use-after-free safety bugs that may very well be exploited for arbitrary code execution.The feature-rich PDF reader offers broad performance to customers, together with help for multimedia paperwork and dynamic varieties through JavaScript help, which additionally expands the appliance’s assault floor.This week, Cisco’s Talos safety researchers have revealed data on 4 vulnerabilities in Foxit Reader’s JavaScript engine that may very well be exploited to attain arbitrary code execution.The problems, tracked as CVE-2022-32774, CVE-2022-38097, CVE-2022-37332 and CVE-2022-40129, have a CVSS rating of 8.Eight and are described as use-after-free vulnerabilities.“A specifically crafted PDF doc can set off the reuse of beforehand freed reminiscence, which might result in arbitrary code execution,” Cisco explains.An attacker seeking to exploit these vulnerabilities would want to trick a person into opening a malicious file. In accordance with Cisco, if the Foxit browser plugin extension is enabled, the bugs might be triggered when the person navigates to a malicious web site.Cisco reported the safety defects to Foxit in September. This week, Foxit launched model 12.0.1.12430 of its PDF reader to deal with all points. Customers are suggested to replace to the most recent software program iteration as quickly as potential.Associated: Apple Patches Distant Code Execution Flaws in iOS, macOSAssociated: Cisco Patches 33 Vulnerabilities in Enterprise Firewall MerchandiseAssociated: Citrix Patches Essential Vulnerability in Gateway, ADCAssociated: SAP Patches Essential Vulnerabilities in BusinessObjects, SAPUI5Get the Each day Briefing Most LatestMost LearnGitHub Introduces Non-public Vulnerability Reporting for Public RepositoriesChinese language Spyware and adware Targets Uyghurs By Apps: ReportLiteSpeed Vulnerabilities Can Result in Full Internet Server TakeoverFoxit Patches A number of Code Execution Vulnerabilities in PDF ReaderGoogle Pays $70okay for Android Lock Display screen BypassCISA Releases Determination Tree Mannequin to Assist Corporations Prioritize Vulnerability PatchingMicrosoft Hyperlinks Status Ransomware Assaults to Russian State-Sponsored HackersLaika Raises $50 Million for Its Compliance PlatformCisco Patches 33 Vulnerabilities in Enterprise Firewall MerchandiseTwitter Safety Chief Resigns as Musk Sparks ‘Deep Concern’In search of Malware in All of the Incorrect Locations?First Step For The Web’s subsequent 25 years: Including Safety to the DNSTattle Story: What Your Pc Says About YouBe in a Place to Act By Cyber Situational ConsciousnessReport Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant2010, A Nice Yr To Be a Scammer.Do not Let DNS be Your Single Level of FailureFind out how to Determine Malware in a BlinkDefining and Debating Cyber WarfareThe 5 A’s that Make Cybercrime so EngagingFind out how to Defend In opposition to DDoS AssaultsSafety Budgets Not in Line with ThreatsAnycast – Three Causes Why Your DNS Community Ought to Use ItThe Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering OrganizationsUtilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous Enterprise code execution Foxit Reader patch pdf use-after-free vulnerability Orbit Brainhttp://orbitbrain.com/ Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy ways and much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.
GitHub Improves npm Account Security as Incidents RiseIntroducing the Cyber Security News GitHub Improves npm Account Security as Incidents Rise.... July 29, 2022 Cyber Security News
Meta Paid Out $16 Million in Bug Bounties Since 2011Introducing the Cyber Security News Meta Paid Out $16 Million in Bug Bounties Since 2011.... December 16, 2022 Cyber Security News
Power Electronics Manufacturer Semikron Targeted in Ransomware AttackIntroducing the Cyber Security News Power Electronics Manufacturer Semikron Targeted in Ransomware Attack.... August 4, 2022 Cyber Security News
Realtek SDK Vulnerability Exposes Routers From Many Vendors to Remote AttacksIntroducing the Cyber Security News Realtek SDK Vulnerability Exposes Routers From Many Vendors to Remote Attacks.... August 13, 2022 Cyber Security News
Cyberattack Hits Norway, Pro-Russian Hacker Group FingeredIntroducing the Cyber Security News Cyberattack Hits Norway, Pro-Russian Hacker Group Fingered.... June 30, 2022 Cyber Security News
Ex-Security Chief Accuses Twitter of Hiding Major FlawsIntroducing the Cyber Security News Ex-Security Chief Accuses Twitter of Hiding Major Flaws.... August 23, 2022 Cyber Security News