Foxitsoftware: >> Foxit Pdf Sdk Activex >> 4.0 Security Vulnerabilities
A stack-based buffer overflow can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing the URI string. An attacker can leverage this to gain remote code execution.
CVSS Score
7.8
EPSS Score
0.003
Published
2019-06-17
A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing a launch action. An attacker can leverage this to gain remote code execution.
CVSS Score
7.8
EPSS Score
0.003
Published
2019-06-17
Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 through 5.0.1820 before 5.0.2.924 allows remote attackers to execute arbitrary code via a long string, related to global variables.
CVSS Score
6.8
EPSS Score
0.005
Published
2014-10-17