Foxit Reader up to 9.6 CovertToPDF JPEG File integer overflow

Summaryinfo

A vulnerability classified as critical has been found in Foxit Reader. The affected element is an unknown function of the component CovertToPDF. The manipulation as part of JPEG File leads to integer overflow. This vulnerability is listed as CVE-2020-8844. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

Detailsinfo

A vulnerability was found in Foxit Reader (Document Reader Software) and classified as critical. This issue affects some unknown processing of the component CovertToPDF. The manipulation as part of a JPEG File leads to a integer overflow vulnerability. Using CWE to declare the problem leads to CWE-190. The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control. Impacted is confidentiality, integrity, and availability. The summary by CVE is:

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JPEG files within CovertToPDF. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-9102.

The weakness was presented 02/14/2020 (Website). The advisory is shared at foxitsoftware.com. The identification of this vulnerability is CVE-2020-8844 since 02/11/2020. The attack may be initiated remotely. No form of authentication is needed for a successful exploitation. It demands that the victim is doing some kind of user interaction. Neither technical details nor an exploit are publicly available.

Upgrading to version 9.6.0.25114 eliminates this vulnerability.

See VDB-93200, VDB-93201, VDB-93202 and VDB-93203 for similar entries. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Productinfo

Type

• Document Reader Software

Vendor

• Foxit

Name

• Reader

Version

• 2.0
• 2.2
• 2.2.0.0616
• 2.3
• 2.4.4
• 3
• 3.0
• 3.0.2009.1301
• 3.04
• 3.1
• 3.1.0.0111
• 3.1.0.0824
• 3.1.1
• 3.1.1.0901
• 3.1.1.0928
• 3.1.2.1013
• 3.1.2.1030
• 3.1.3
• 3.1.3.1030
• 3.1.4
• 3.2
• 3.2.0.0303
• 3.2.1
• 3.2.1.0401
• 3.3
• 3.3.1
• 4
• 4.0
• 4.0.0.0619
• 4.1
• 4.1.1
• 4.1.1.0805
• 4.2
• 4.3
• 4.3.1.0218
• 5.0
• 5.0.2
• 5.1.0.1021
• 5.1.3
• 5.1.4.0104
• 5.3
• 5.3.1.0606
• 5.4
• 5.4.0.1031
• 5.4.3.0920
• 5.4.4.1128
• 5.4.5
• 6.1
• 6.1.4
• 7.0.8
• 7.1
• 7.1.3.320
• 7.1.5
• 7.2.1
• 7.2.2
• 7.3.4
• 7.3.4.311
• 8.0
• 8.1
• 8.2.1
• 8.2.1.6871
• 8.3.0.14878
• 8.3.1
• 8.3.1.21155
• 8.3.2.25013
• 9.0.0.29935
• 9.0.1.1049
• 9.0.1.5096
• 9.1
• 9.1.0.5096
• 9.1.5096
• 9.2
• 9.2.0.9297
• 9.3
• 9.3.0.10809
• 9.3.0.10826
• 9.3.10826
• 9.4.0.16811
• 9.4.1.16828
• 9.4.16811
• 9.5
• 9.5.0.20723
• 9.5.0.20733
• 9.6

License

• free

Website

• Vendor: https://www.foxitsoftware.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Discussion