Foxit Reader invites Trojans DLLs
·
With Version 5.4 includes a vulnerability in Foxit PDF Reader that is documented two weeks ago. About the vulnerability, attackers could infect a system with malicious software, if a victim opens a PDF file.
Like most Windows programs and the Foxit Reader loads libraries preferably from the directory in which the program was started. This is especially a problem if this is a WebDAV or SMB share is that is under the attacker's control. Then there can simply drop a Trojan library with the name of a Windows DLL. Is set Foxit PDF viewer, then suffices may have to click on an appropriate URL so Foxit loads the DLL and runs the contained malicious code.
With version 5.4, the manufacturer has solved this problem in their own words.You can download from the manufacturer's website.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment