Vulnerability DatabaseCVE-2021-34964

CVE-2021-34964:
Foxit PDF Reader vulnerability analysis and mitigation

Overview

Foxit PDF Editor Polygon Annotation Use-After-Free Remote Code Execution Vulnerability (CVE-2021-34964) was discovered and disclosed on October 15, 2021. This vulnerability affects Foxit PDF Editor installations and requires user interaction to exploit, specifically requiring the target to visit a malicious page or open a malicious file (ZDI Advisory).

Technical details

The vulnerability exists within the handling of Annotation objects in Foxit PDF Editor. The specific flaw results from the lack of validating the existence of an object prior to performing operations on the object. The vulnerability has been assigned a CVSS v3.0 score of 7.8 (High) with the following vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (ZDI Advisory).

Impact

An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. The successful exploitation requires user interaction, as the target must visit a malicious page or open a malicious file (ZDI Advisory).

Mitigation and workarounds

Foxit has issued an update to correct this vulnerability. Users are advised to update their software to the latest version through the vendor's security bulletins page (ZDI Advisory).