CVE-2010-1239

Foxit Reader <3.2.1.0401 - RCE

Title source: llm

Description

Foxit Reader before 3.2.1.0401 allows remote attackers to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequence, a related issue to CVE-2009-0836.

Exploits (1)

exploitdb WRITEUP

localwindows

https://www.exploit-db.com/exploits/11987

View Code ZIP pw:eip

References (6)

[Exploit] http://blog.didierstevens.com/2010/03/29/escape-from-pdf/

[Exploit] http://blog.didierstevens.com/2010/03/31/escape-from-foxit-reader/

[Various Sources] http://www.f-secure.com/weblog/archives/00001923.html

[Patch, Vendor Advisory] http://www.foxitsoftware.com/announcements/2010420408.html

[Patch, Vendor Advisory] http://www.foxitsoftware.com/pdf/reader/security.htm#0401

[Patch, US Government Resource] http://www.kb.cert.org/vuls/id/570177

Scores

EPSS 0.0500

EPSS Percentile 89.7%

Details

CWE

CWE-94

Status published

Products (7)

foxitsoftware/foxit_reader 2.3

foxitsoftware/foxit_reader 3.0

foxitsoftware/foxit_reader 3.1.0.0824

foxitsoftware/foxit_reader 3.1.1.0901

foxitsoftware/foxit_reader 3.1.1.0928

foxitsoftware/foxit_reader 3.1.3.1030

foxitsoftware/foxit_reader < 3.2.0.0303

Published Apr 05, 2010

Tracked Since Feb 18, 2026