Buffer Overflow Vulnerability in Foxit PDF SDK ActiveX by Foxit Software
CVE-2014-8074

Currently unrated

Key Information:

Vendor

Foxit
Status
Foxit PDF Sdk Activex
Vendor
CVE Published:
17 October 2014

What is CVE-2014-8074?

A buffer overflow vulnerability exists in the SetLogFile method of the Foxit PDF SDK ActiveX. This flaw can be exploited by remote attackers through the delivery of a maliciously crafted long string. When processed, it can lead to arbitrary code execution owing to improper handling of global variables, affecting versions of the product prior to 5.0.2.924. Users are encouraged to update their installations to mitigate the risk associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.foxitsoftware.com/support/security_bulletins.p...
x_refsource_CONFIRM
http://www.zerodayinitiative.com/advisories/ZDI-14-362/
x_refsource_MISC
http://www.securityfocus.com/bid/70608
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.