CVE-2024-9247: 
Foxit PDF Reader vulnerability analysis and mitigation

Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2024-9247) was discovered and disclosed on November 22, 2024. This vulnerability affects multiple versions of Foxit PDF Reader and Foxit PDF Editor on Windows platform, including versions up to 2024.2.3.25184 (ZDI Advisory, Foxit Bulletin).

The vulnerability exists within the handling of Annotation objects in Foxit PDF Reader. The specific flaw stems from the lack of proper validation of user-supplied data, which can result in a write operation before the start of an allocated object. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (NVD).

If successfully exploited, this vulnerability allows remote attackers to execute arbitrary code in the context of the current process on affected installations of Foxit PDF Reader. The high CVSS score indicates potential severe impacts on system confidentiality, integrity, and availability (ZDI Advisory).

Foxit has released security updates to address this vulnerability. Users are advised to update their applications to the latest versions. For Version 2023.1 and higher, users can update by clicking on 'Help' > 'About Foxit PDF Reader/Editor' > 'Check for Update'. Alternatively, users can download the updated version directly from the Foxit website (Foxit Bulletin).