English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.813156
Kategorie:General
Titel:Foxit Reader Multiple Vulnerabilities-Apr18 (Windows)
Zusammenfassung:Foxit Reader is prone to multiple vulnerabilities.
Beschreibung:Summary:
Foxit Reader is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to:

- An error where the application passes an insufficiently qualified path in
loading an external library when a user launches the application.

- A heap buffer overflow error.

- Multiple use-after-free errors.

- The use of uninitialized new 'Uint32Array' object or member variables in
'PrintParams' or 'm_pCurContex' objects.

- An incorrect memory allocation, memory commit, memory access, or array access.

- Type Confusion errors.

- An error in 'GoToE' & 'GoToR' Actions.

- An out-of-bounds read error in the '_JP2_Codestream_Read_SOT' function.

- An error since the application did not handle a COM object properly.

- An error allowing users to embed executable files.

- U3D out-of-bounds read, write and access errors.

- U3D uninitialized pointer error.

- U3D heap buffer overflow or stack-based buffer overflow error.

- An error when the application is not running in safe-reading-mode and can
be abused via '_JP2_Codestream_Read_SOT' function.

- U3D Type Confusion errors.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to cause a denial of service condition, execute arbitrary code and
gain access to sensitive data from memory.

Affected Software/OS:
Foxit Reader versions 9.0.1.1049 and prior on windows

Solution:
Upgrade to Foxit Reader version 9.1 or later. Please see the references for more information.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: BugTraq ID: 105602
Common Vulnerability Exposure (CVE) ID: CVE-2018-1173
https://zerodayinitiative.com/advisories/ZDI-18-311
Common Vulnerability Exposure (CVE) ID: CVE-2018-1174
https://zerodayinitiative.com/advisories/ZDI-18-312
Common Vulnerability Exposure (CVE) ID: CVE-2018-1175
https://zerodayinitiative.com/advisories/ZDI-18-313
Common Vulnerability Exposure (CVE) ID: CVE-2018-1176
https://zerodayinitiative.com/advisories/ZDI-18-314
Common Vulnerability Exposure (CVE) ID: CVE-2018-1177
https://zerodayinitiative.com/advisories/ZDI-18-315
Common Vulnerability Exposure (CVE) ID: CVE-2018-1178
https://zerodayinitiative.com/advisories/ZDI-18-316
Common Vulnerability Exposure (CVE) ID: CVE-2018-1179
https://zerodayinitiative.com/advisories/ZDI-18-317
Common Vulnerability Exposure (CVE) ID: CVE-2018-1180
https://zerodayinitiative.com/advisories/ZDI-18-318
Common Vulnerability Exposure (CVE) ID: CVE-2018-3842
BugTraq ID: 103942
http://www.securityfocus.com/bid/103942
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0525
http://www.securitytracker.com/id/1040733
Common Vulnerability Exposure (CVE) ID: CVE-2018-3843
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0526
Common Vulnerability Exposure (CVE) ID: CVE-2018-3850
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0532
Common Vulnerability Exposure (CVE) ID: CVE-2018-3853
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0536
Common Vulnerability Exposure (CVE) ID: CVE-2018-5674
BugTraq ID: 104300
http://www.securityfocus.com/bid/104300
https://srcincite.io/advisories/src-2018-0010/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5675
https://srcincite.io/advisories/src-2018-0013/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5676
https://srcincite.io/advisories/src-2018-0011/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5677
https://srcincite.io/advisories/src-2018-0014/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5678
https://srcincite.io/advisories/src-2018-0012/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5679
https://srcincite.io/advisories/src-2018-0015/
Common Vulnerability Exposure (CVE) ID: CVE-2018-5680
https://srcincite.io/advisories/src-2018-0016/
Common Vulnerability Exposure (CVE) ID: CVE-2018-7407
https://srcincite.io/advisories/src-2018-0018/
Common Vulnerability Exposure (CVE) ID: CVE-2018-9935
https://zerodayinitiative.com/advisories/ZDI-18-319
Common Vulnerability Exposure (CVE) ID: CVE-2018-9936
https://zerodayinitiative.com/advisories/ZDI-18-320
Common Vulnerability Exposure (CVE) ID: CVE-2018-9937
https://zerodayinitiative.com/advisories/ZDI-18-321
Common Vulnerability Exposure (CVE) ID: CVE-2018-9938
https://zerodayinitiative.com/advisories/ZDI-18-322
Common Vulnerability Exposure (CVE) ID: CVE-2018-9939
https://zerodayinitiative.com/advisories/ZDI-18-323
Common Vulnerability Exposure (CVE) ID: CVE-2018-9940
https://zerodayinitiative.com/advisories/ZDI-18-324
Common Vulnerability Exposure (CVE) ID: CVE-2018-9941
https://zerodayinitiative.com/advisories/ZDI-18-325
Common Vulnerability Exposure (CVE) ID: CVE-2018-9942
https://zerodayinitiative.com/advisories/ZDI-18-326
Common Vulnerability Exposure (CVE) ID: CVE-2018-9943
https://zerodayinitiative.com/advisories/ZDI-18-327
Common Vulnerability Exposure (CVE) ID: CVE-2018-9944
https://zerodayinitiative.com/advisories/ZDI-18-328
Common Vulnerability Exposure (CVE) ID: CVE-2018-9945
https://zerodayinitiative.com/advisories/ZDI-18-329
Common Vulnerability Exposure (CVE) ID: CVE-2018-9946
https://zerodayinitiative.com/advisories/ZDI-18-330
Common Vulnerability Exposure (CVE) ID: CVE-2018-9947
https://zerodayinitiative.com/advisories/ZDI-18-331
Common Vulnerability Exposure (CVE) ID: CVE-2018-9948
https://www.exploit-db.com/exploits/44941/
https://www.exploit-db.com/exploits/45269/
https://zerodayinitiative.com/advisories/ZDI-18-332
Common Vulnerability Exposure (CVE) ID: CVE-2018-9949
https://zerodayinitiative.com/advisories/ZDI-18-333
Common Vulnerability Exposure (CVE) ID: CVE-2018-9950
https://zerodayinitiative.com/advisories/ZDI-18-334
Common Vulnerability Exposure (CVE) ID: CVE-2018-9951
https://zerodayinitiative.com/advisories/ZDI-18-335
Common Vulnerability Exposure (CVE) ID: CVE-2018-9952
https://zerodayinitiative.com/advisories/ZDI-18-336
Common Vulnerability Exposure (CVE) ID: CVE-2018-9953
https://zerodayinitiative.com/advisories/ZDI-18-337
Common Vulnerability Exposure (CVE) ID: CVE-2018-9954
https://zerodayinitiative.com/advisories/ZDI-18-338
Common Vulnerability Exposure (CVE) ID: CVE-2018-9955
https://zerodayinitiative.com/advisories/ZDI-18-339
Common Vulnerability Exposure (CVE) ID: CVE-2018-9956
https://zerodayinitiative.com/advisories/ZDI-18-340
Common Vulnerability Exposure (CVE) ID: CVE-2018-9957
https://zerodayinitiative.com/advisories/ZDI-18-341
Common Vulnerability Exposure (CVE) ID: CVE-2018-9958
http://packetstormsecurity.com/files/160240/Foxit-Reader-9.0.1.1049-Arbitrary-Code-Execution.html
https://zerodayinitiative.com/advisories/ZDI-18-342
Common Vulnerability Exposure (CVE) ID: CVE-2018-9959
https://zerodayinitiative.com/advisories/ZDI-18-343
Common Vulnerability Exposure (CVE) ID: CVE-2018-9960
https://zerodayinitiative.com/advisories/ZDI-18-344
Common Vulnerability Exposure (CVE) ID: CVE-2018-9961
https://zerodayinitiative.com/advisories/ZDI-18-345
Common Vulnerability Exposure (CVE) ID: CVE-2018-9962
https://zerodayinitiative.com/advisories/ZDI-18-346
Common Vulnerability Exposure (CVE) ID: CVE-2018-9963
https://zerodayinitiative.com/advisories/ZDI-18-347
Common Vulnerability Exposure (CVE) ID: CVE-2018-9964
https://zerodayinitiative.com/advisories/ZDI-18-348
Common Vulnerability Exposure (CVE) ID: CVE-2018-9965
https://zerodayinitiative.com/advisories/ZDI-18-349
Common Vulnerability Exposure (CVE) ID: CVE-2018-9966
https://zerodayinitiative.com/advisories/ZDI-18-350
Common Vulnerability Exposure (CVE) ID: CVE-2018-9967
https://zerodayinitiative.com/advisories/ZDI-18-351
Common Vulnerability Exposure (CVE) ID: CVE-2018-9968
https://zerodayinitiative.com/advisories/ZDI-18-352
Common Vulnerability Exposure (CVE) ID: CVE-2018-9969
https://zerodayinitiative.com/advisories/ZDI-18-353
Common Vulnerability Exposure (CVE) ID: CVE-2018-9970
https://zerodayinitiative.com/advisories/ZDI-18-354
Common Vulnerability Exposure (CVE) ID: CVE-2018-9971
https://zerodayinitiative.com/advisories/ZDI-18-355
Common Vulnerability Exposure (CVE) ID: CVE-2018-9972
https://zerodayinitiative.com/advisories/ZDI-18-356
Common Vulnerability Exposure (CVE) ID: CVE-2018-9973
https://zerodayinitiative.com/advisories/ZDI-18-357
Common Vulnerability Exposure (CVE) ID: CVE-2018-9974
https://zerodayinitiative.com/advisories/ZDI-18-358
Common Vulnerability Exposure (CVE) ID: CVE-2018-9975
https://zerodayinitiative.com/advisories/ZDI-18-359
Common Vulnerability Exposure (CVE) ID: CVE-2018-9976
https://zerodayinitiative.com/advisories/ZDI-18-374
Common Vulnerability Exposure (CVE) ID: CVE-2018-9977
https://zerodayinitiative.com/advisories/ZDI-18-375
Common Vulnerability Exposure (CVE) ID: CVE-2018-9978
https://zerodayinitiative.com/advisories/ZDI-18-376
Common Vulnerability Exposure (CVE) ID: CVE-2018-9979
https://zerodayinitiative.com/advisories/ZDI-18-377
Common Vulnerability Exposure (CVE) ID: CVE-2018-9980
https://zerodayinitiative.com/advisories/ZDI-18-378
Common Vulnerability Exposure (CVE) ID: CVE-2018-9981
https://zerodayinitiative.com/advisories/ZDI-18-379
Common Vulnerability Exposure (CVE) ID: CVE-2018-9982
https://zerodayinitiative.com/advisories/ZDI-18-380
Common Vulnerability Exposure (CVE) ID: CVE-2018-9983
https://zerodayinitiative.com/advisories/ZDI-18-381
Common Vulnerability Exposure (CVE) ID: CVE-2018-9984
https://zerodayinitiative.com/advisories/ZDI-18-382
Common Vulnerability Exposure (CVE) ID: CVE-2018-3924
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0588
http://www.securitytracker.com/id/1041353
Common Vulnerability Exposure (CVE) ID: CVE-2018-3939
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0606
CopyrightCopyright (C) 2018 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.