CVE-2010-1239 Information

Feb 14, 2021 cve

Description

Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain /Type /Action /S /Launch\ sequence and (2) execute arbitrary programs embedded in a PDF document via an unspecified /Launch /Action\ sequence a related issue to CVE-2009-0836.

Reference

http://blog.didierstevens.com/2010/03/29/escape-from-pdf/ http://blog.didierstevens.com/2010/03/31/escape-from-foxit-reader/ http://www.foxitsoftware.com/announcements/2010420408.html http://www.foxitsoftware.com/pdf/reader/security.htm0401 http://www.f-secure.com/weblog/archives/00001923.html http://www.kb.cert.org/vuls/id/570177

Share on: