mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-12 09:21:42 +02:00
0xMarcio
835 B
835 B
CVE-2010-1239
Description
Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequence, a related issue to CVE-2009-0836.
POC
Reference
- http://blog.didierstevens.com/2010/03/29/escape-from-pdf/
- http://blog.didierstevens.com/2010/03/31/escape-from-foxit-reader/
Github
No PoCs found on GitHub currently.