Gladiator Security Forum > Foxit Reader Plugin: Critical Vuln.

Full Version: Foxit Reader Plugin: Critical Vuln.

Gladiator Security Forum > Forum Rules > Security Bulletins

Chachazz

Oct 20 2009, 01:09 AM

Foxit Reader Firefox Plugin Memory Corruption Vulnerability
Secunia Advisory: SA37049 - Highly critical

Description:
A vulnerability has been discovered in Foxit Reader, which can be exploited by malicious people to potentially compromise a user's system.

The vulnerability is caused due to an error in the Foxit Reader plugin for Firefox (npFoxitReaderPlugin.dll). This can be exploited to trigger a memory corruption by tricking a user into visiting a specially crafted web page which repeatedly loads and unloads the plugin.

Successful exploitation may allow execution of arbitrary code.

This is related to vulnerability #12 in: SA36983

The vulnerability is confirmed with Foxit Reader version 3.1.2.1013 and Mozilla Firefox 3.5.3. Other versions may also be affected.

Solution:
Do not visit untrusted websites or follow untrusted links.

Disable the Foxit Reader plugin in Firefox.

Provided and/or discovered by:
Originally discovered in Adobe Reader by SkyLined.
Reported in Foxit Reader by MrX.

http://secunia.com/advisories/37049/

This affects the latest version update of Foxit Reader - Firefox Plugin - Be careful out there, folks!
Run your browser Untrusted with something like DefenseWall HIPS, or similar Security application.

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.