SecuritySpace - CVE-2018-3842

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-3842

Description: An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can lead to a dereference of an uninitialized pointer which, if under attacker control, can result in arbitrary code execution. An attacker needs to trick the user to open a malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-3842
BugTraq ID: 103942
http://www.securityfocus.com/bid/103942
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0525
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0525
http://www.securitytracker.com/id/1040733

CVE ID:	CVE-2018-3842
Description:	An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can lead to a dereference of an uninitialized pointer which, if under attacker control, can result in arbitrary code execution. An attacker needs to trick the user to open a malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-3842 BugTraq ID: 103942 http://www.securityfocus.com/bid/103942 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0525 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0525 http://www.securitytracker.com/id/1040733