Description
Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
http://www.solutionary.com/index/SERT/Vuln-Disclosures/Foxit-Reader.html
Scores
EPSS
0.0761
EPSS Percentile
92.0%
Details
CWE
CWE-426
Status
published
Products (16)
foxitsoftware/foxit_reader
2.0
foxitsoftware/foxit_reader
2.2
foxitsoftware/foxit_reader
2.3
foxitsoftware/foxit_reader
3.0
foxitsoftware/foxit_reader
3.1
foxitsoftware/foxit_reader
3.1.1
foxitsoftware/foxit_reader
3.1.3
foxitsoftware/foxit_reader
3.1.4
foxitsoftware/foxit_reader
3.2
foxitsoftware/foxit_reader
3.2.1
... and 6 more
Published
Sep 27, 2011
Tracked Since
Feb 18, 2026