Описание
Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
Комментарий
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:foxitsoftware:foxit_reader:6.1:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.2:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.4:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:6.2:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:7.0:*:*:*:*:*:*:*
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.6:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00176
Низкий
4.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
EPSS
Процентиль: 39%
0.00176
Низкий
4.4 Medium
CVSS2
Дефекты
NVD-CWE-Other