CVE-2009-0837
CVE-2009-0837
Stack-based buffer overflow in Foxit Reader 3.0 before Build 1506, including 1120 and 1301, allows remote attackers to execute arbitrary code via a long (1) relative path or (2) absolute path in the filename argument in an action, as demonstrated by the "Open/Execute a file" action.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/8201unverifiedexploitdbwww.exploit-db.com/exploits/18905unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/34036https://exchange.xforce.ibmcloud.com/vulnerabilities/49136http://www.coresecurity.com/content/foxit-reader-vulnerabilitieshttp://www.foxitsoftware.com/pdf/reader/security.htm#Stackbasedhttp://www.securityfocus.com/archive/1/501623/100/0/threadedhttp://www.securityfocus.com/bid/34035http://www.securitytracker.com/id?1021824http://www.vupen.com/english/advisories/2009/0634