Foxit PDF Reader 9.0.1.1049 Pointer Overwrite Use-After-Free

Posted by deepcore on August 25, 2018 – 6:11 am

Foxit PDF Reader version 9.0.1.1049 has a use-after-free vulnerability in the Text Annotations component and the TypedArray’s use uninitialized pointers. The vulnerabilities can be combined to leak a vtable memory address, which can be adjusted to point to the base address of the executable. A ROP chain can be constructed that will execute when Foxit Reader performs the UAF.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [webapps] ManageEngine ADManager Plus 6.5.7 – HTML Injection Adobe Flash AVC Processing Out Of Bounds Read »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Foxit PDF Reader 9.0.1.1049 Pointer Overwrite Use-After-Free

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL