Foxit Patches Several Code Execution Vulnerabilities in PDF Reader By Orbit Brain November 11, 2022 0 227 views House › VulnerabilitiesFoxit Patches A number of Code Execution Vulnerabilities in PDF ReaderBy Ionut Arghire on November 11, 2022TweetCommon PDF doc reader Foxit Reader has been up to date to deal with a number of use-after-free safety bugs that may very well be exploited for arbitrary code execution.The feature-rich PDF reader offers broad performance to customers, together with help for multimedia paperwork and dynamic varieties through JavaScript help, which additionally expands the appliance’s assault floor.This week, Cisco’s Talos safety researchers have revealed data on 4 vulnerabilities in Foxit Reader’s JavaScript engine that may very well be exploited to attain arbitrary code execution.The problems, tracked as CVE-2022-32774, CVE-2022-38097, CVE-2022-37332 and CVE-2022-40129, have a CVSS rating of 8.Eight and are described as use-after-free vulnerabilities.“A specifically crafted PDF doc can set off the reuse of beforehand freed reminiscence, which might result in arbitrary code execution,” Cisco explains.An attacker seeking to exploit these vulnerabilities would want to trick a person into opening a malicious file. In accordance with Cisco, if the Foxit browser plugin extension is enabled, the bugs might be triggered when the person navigates to a malicious web site.Cisco reported the safety defects to Foxit in September. This week, Foxit launched model 12.0.1.12430 of its PDF reader to deal with all points. Customers are suggested to replace to the most recent software program iteration as quickly as potential.Associated: Apple Patches Distant Code Execution Flaws in iOS, macOSAssociated: Cisco Patches 33 Vulnerabilities in Enterprise Firewall MerchandiseAssociated: Citrix Patches Essential Vulnerability in Gateway, ADCAssociated: SAP Patches Essential Vulnerabilities in BusinessObjects, SAPUI5Get the Each day Briefing Most LatestMost LearnGitHub Introduces Non-public Vulnerability Reporting for Public RepositoriesChinese language Spyware and adware Targets Uyghurs By Apps: ReportLiteSpeed Vulnerabilities Can Result in Full Internet Server TakeoverFoxit Patches A number of Code Execution Vulnerabilities in PDF ReaderGoogle Pays $70okay for Android Lock Display screen BypassCISA Releases Determination Tree Mannequin to Assist Corporations Prioritize Vulnerability PatchingMicrosoft Hyperlinks Status Ransomware Assaults to Russian State-Sponsored HackersLaika Raises $50 Million for Its Compliance PlatformCisco Patches 33 Vulnerabilities in Enterprise Firewall MerchandiseTwitter Safety Chief Resigns as Musk Sparks ‘Deep Concern’In search of Malware in All of the Incorrect Locations?First Step For The Web’s subsequent 25 years: Including Safety to the DNSTattle Story: What Your Pc Says About YouBe in a Place to Act By Cyber Situational ConsciousnessReport Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant2010, A Nice Yr To Be a Scammer.Do not Let DNS be Your Single Level of FailureFind out how to Determine Malware in a BlinkDefining and Debating Cyber WarfareThe 5 A’s that Make Cybercrime so EngagingFind out how to Defend In opposition to DDoS AssaultsSafety Budgets Not in Line with ThreatsAnycast – Three Causes Why Your DNS Community Ought to Use ItThe Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering OrganizationsUtilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous EnterpriseShare this:FacebookXPrintEmailLinkedInRedditTwitterTumblrPinterestTelegramWhatsApp code execution Foxit Reader patch pdf use-after-free vulnerability Orbit Brainhttps://orbitbrain.com/ Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy waysand much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.
Slack Forces Password Resets After Discovering Software FlawIntroducing the Cyber Security News Slack Forces Password Resets After Discovering Software Flaw.... August 5, 2022 Cyber Security News
Former Uber CISO Joe Sullivan Found Guilty Over Breach Cover UpIntroducing the Cyber Security News Former Uber CISO Joe Sullivan Found Guilty Over Breach Cover Up.... October 6, 2022 Cyber Security News
White House Unveils Artificial Intelligence ‘Bill of Rights’Introducing the Cyber Security News White House Unveils Artificial Intelligence ‘Bill of Rights’.... October 5, 2022 Cyber Security News
Hadrian Raises $11 Million for Offensive Security PlatformIntroducing the Cyber Security News Hadrian Raises $11 Million for Offensive Security Platform.... June 26, 2022 Cyber Security News
Delta Electronics Patches Serious Flaws in Industrial Networking DevicesIntroducing the Cyber Security News Delta Electronics Patches Serious Flaws in Industrial Networking Devices.... November 30, 2022 Cyber Security News
Facebook Agrees to Pay $725 Million to Settle Privacy SuitIntroducing the Cyber Security News Facebook Agrees to Pay $725 Million to Settle Privacy Suit.... December 23, 2022 Cyber Security News
The Next Shiba Inu and Dogecoin? Dogecoin20 ICO and the Promise of Millionaire ReturnsMarch 20, 2024 70