CVE-2017-10952

HIGH

Foxit Reader 8.2.0.2051 - Arbitrary File Write via saveAs JavaScript Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-10952. PoCs published by afbase.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2017-10951 and CVE-2017-10952, focusing on Foxit Reader's Safe Reading mode bypass and command injection vulnerabilities. It includes explanations of the exploit mechanics, code snippets, and references to external PoCs.

Description

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.0.2051. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the saveAs JavaScript function. The issue results from the lack of proper validation of user-supplied data, which can lead to writing arbitrary files into attacker controlled locations. An attacker can leverage this vulnerability to execute code under the context of the current process. Was ZDI-CAN-4518.

Exploits (1)

nomisec WRITEUP 1 stars

by afbase · poc

https://github.com/afbase/CVE-2017-10952

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2017-10951 and CVE-2017-10952, focusing on Foxit Reader's Safe Reading mode bypass and command injection vulnerabilities. It includes explanations of the exploit mechanics, code snippets, and references to external PoCs.

Classification

Writeup 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Foxit Reader (versions including 8.3.1.21155)

No auth needed

Prerequisites: Safe Reading mode disabled in Foxit Reader · User interaction to open a malicious PDF

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100412

Third Party Advisory, VDB Entry x_refsource_misc

https://zerodayinitiative.com/advisories/ZDI-17-692

Exploit, Third Party Advisory x_refsource_misc

https://0patch.blogspot.com/2017/08/0patching-foxit-readers-saveas-0day-cve.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1039212

Scores

CVSS v3 8.8

EPSS 0.0715

EPSS Percentile 93.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-20 CWE-693

Status published

Products (2)

foxitsoftware/foxit_reader 8.2.0.2051

Zero Day Initiative/Foxit Reader 8.2.0.2051

Published Aug 29, 2017

Tracked Since Feb 18, 2026