Tuesday, May 20, 2008 9:21 AM
cmosby
Foxit Reader "util.printf()" Buffer Overflow - Secunia
Foxit Reader "util.printf()" Buffer Overflow
Secunia Advisory:
SA29941
Release Date:
2008-05-20
Critical:
Highly critical
Impact:
System access
Where:
From remote
Solution Status:
Unpatched
Software:
Foxit Reader 2.x
CVE reference:
CVE-2008-1104 (Secunia mirror)
Description:
Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the "util.printf()" JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file.
Successful exploitation allows execution of arbitrary code.
The vulnerability is confirmed in version 2.3 build 2825. Other versions may also be affected.
Solution:
The vulnerability is fixed in upcoming version 2.3 build 2912.
Provided and/or discovered by:
Dyon Balding, Secunia Research.
Original Advisory:
Secunia Research:
http://secunia.com/secunia_research/2008-18/
Filed under: Patch Management, Internet Applications, Security, Configuration Managment, Software Vulnerabilites