CVEs-PoC/2010/CVE-2010-20010.md at 2ef066380cb36dba2e454190ca2349fcff6ca2df

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-26 13:37:50 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

Foxit PDF Reader before 4.2.0.0928 does not properly bound-check the /Title entry in the PDF Info dictionary. A specially crafted PDF with an overlong Title string can overflow a fixed-size stack buffer, corrupt the Structured Exception Handler (SEH) chain, and lead to arbitrary code execution in the context of the user who opens the file.

POC

Reference

https://www.exploit-db.com/exploits/15514/
https://www.exploit-db.com/exploits/15532
https://www.exploit-db.com/exploits/16621
https://www.vulncheck.com/advisories/foxit-pdf-reader-title-stack-buffer-overflow

Github

No PoCs found on GitHub currently.

1.0 KiB Raw Blame History

CVE-2010-20010

Description

POC

Reference

Github

1.0 KiB

Raw Blame History