CNNVD-202508-386 Information

Aug 05, 2025 cve

CNNVD ID

CNNVD-202508-386

CVE-2013-10068

CNNVD Published: 2025-08-05

Description (Chinese)

Foxit Reader Plugin是美国Foxit公司的一个PDF阅读插件。 Foxit Reader Plugin 2.2.1.530版本存在安全漏洞，该漏洞源于未正确处理URL查询字符串，可能导致缓冲区溢出和任意代码执行。

Description (English)

Foxit Reader Plugin is a PDF reading plugin for Foxit in the United States. The version of Foxit Reader Plugin 2.2.1.530 contains a security loophole, which stems from the incorrect processing of the URL query string, which may lead to a buffer zone spill and arbitrary code implementation.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

福昕

Published

2025-08-05

Last Modified

2026-02-24

References

https://www.tenable.com/plugins/nessus/64094 https://www.exploit-db.com/exploits/23944 https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rb https://www.exploit-db.com/exploits/24502 https://www.vulncheck.com/advisories/foxit-reader-plugin-url-processing-buffer-overflow https://access.redhat.com/security/cve/cve-2013-10068

Share on: