CVE-2016-8856 in Readerinfo

Summary

Foxit Reader for Mac 2.1.0.0804 and earlier and Foxit Reader for Linux 2.1.0.0805 and earlier suffered from a vulnerability where weak file permissions could be exploited by attackers to execute arbitrary code. After the installation, Foxit Reader's core files were world-writable by default, allowing an attacker to overwrite them with backdoor code, which when executed by privileged user would result in Privilege Escalation, Code Execution, or both.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

Reservation

10/19/2016

Disclosure

10/31/2016

Moderation

VulDB entry created

Entries

VDB-93200

CPE

ready

CWE

CWE-275 (Confirmed)

CVSS

7.8

EPSS

0.00007

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8856
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8856
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8856/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!