Buffer Overflow Vulnerability in Foxit PDF SDK ActiveX by Foxit Software
CVE-2014-8074
Currently unrated
Summary
A buffer overflow vulnerability exists in the SetLogFile method of the Foxit PDF SDK ActiveX. This flaw can be exploited by remote attackers through the delivery of a maliciously crafted long string. When processed, it can lead to arbitrary code execution owing to improper handling of global variables, affecting versions of the product prior to 5.0.2.924. Users are encouraged to update their installations to mitigate the risk associated with this vulnerability.
References
Timeline
Vulnerability published
Vulnerability Reserved