SecuritySpace - CVE-2018-3853

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-3853

Description: An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can trigger a previously freed object in memory to be reused resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-3853
BugTraq ID: 103942
http://www.securityfocus.com/bid/103942
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0536
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0536
http://www.securitytracker.com/id/1040733

CVE ID:	CVE-2018-3853
Description:	An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can trigger a previously freed object in memory to be reused resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-3853 BugTraq ID: 103942 http://www.securityfocus.com/bid/103942 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0536 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0536 http://www.securitytracker.com/id/1040733