|
Foxit Reader 3.0.1506Foxit Software - 3.57MB (Freeware) |
Vulnerabilities Fixed:
1. Fixed the issue of stack-based buffer overflow.
Foxit PDF files include actions associated with different triggers. If an action (Open/Execute a file, Open a web link, etc.) is defined in the PDF files with an overly long filename argument and the trigger condition is satisfied, it will cause a stack-based buffer overflow.
2. Fixed the issue of security authorization bypass.
If an action (Open/Execute a file, Open a web link, etc.) is defined in the PDF files and the trigger condition is satisfied, Foxit Reader will do the action defined by the creator of the PDF file without popping up a dialog box to confirm.
3. Fixed the issue of JBIG2 Symbol Dictionary Processing
While decoding a JBIG2 symbol dictionary segment, an array of 32-bit elements is allocated having a size equal to the number of exported symbols, but left uninitialised if the number of new symbols is zero. The array is later accessed and values from uninitialised memory are used as pointers when reading memory and performing calls.
1. Fixed the issue of stack-based buffer overflow.
Foxit PDF files include actions associated with different triggers. If an action (Open/Execute a file, Open a web link, etc.) is defined in the PDF files with an overly long filename argument and the trigger condition is satisfied, it will cause a stack-based buffer overflow.
2. Fixed the issue of security authorization bypass.
If an action (Open/Execute a file, Open a web link, etc.) is defined in the PDF files and the trigger condition is satisfied, Foxit Reader will do the action defined by the creator of the PDF file without popping up a dialog box to confirm.
3. Fixed the issue of JBIG2 Symbol Dictionary Processing
While decoding a JBIG2 symbol dictionary segment, an array of 32-bit elements is allocated having a size equal to the number of exported symbols, but left uninitialised if the number of new symbols is zero. The array is later accessed and values from uninitialised memory are used as pointers when reading memory and performing calls.
Latest updates
- 21 Nov 09 -
O&O DiskImage Express 4.1.47 - 21 Nov 09 -
Google Chrome 4.0.249.4 Beta - 21 Nov 09 -
PeaZip 2.8.0 - 21 Nov 09 -
Paint.NET 3.5.1 - 20 Nov 09 -
Google Earth 5.1.3509 Beta
Copy the following code to link to this page:
DownloadThis Version
3.57MB
Foxit Reader Updates