SecuritySpace - CVE-2017-14458

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-14458

Description: An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 8.3.2.25013. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-14458
BugTraq ID: 103942
http://www.securityfocus.com/bid/103942
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0506
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0506
http://www.securitytracker.com/id/1040733

CVE ID:	CVE-2017-14458
Description:	An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 8.3.2.25013. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-14458 BugTraq ID: 103942 http://www.securityfocus.com/bid/103942 https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0506 https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0506 http://www.securitytracker.com/id/1040733