Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-1058: Foxit PDF Reader AcroForm resetForm Out-Of-Bounds Read Information Disclosure Vulnerability

August 5, 2022

Read Time:12 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-1059: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1060: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1061: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1062: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1063: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1064: OPC Foundation UA .NET Standard BrowseRequest Missing Authentication Information Disclosure Vulnerability

August 5, 2022

Read Time:8 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of OPC Foundation UA .NET Standard. Authentication is not required to exploit this vulnerability.

Advisories

Backdoor.Win32.Bushtrommel.122 / Unauthenticated Remote Command Execution

August 5, 2022

Read Time:20 Second

Posted by malvuln on Aug 04

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022
Original source:
https://malvuln.com/advisory/76c09bc82984c7f7ef55eb13018e0d87_B.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Bushtrommel.122
Vulnerability: Unauthenticated Remote Command Execution
Description: The malware listens on TCP port 31745 and 1030. Adversaries
who can reach infected hosts can run commands made available by the…

Advisories

Backdoor.Win32.Bushtrommel.122 / Authentication Bypass

August 5, 2022

Read Time:20 Second

Posted by malvuln on Aug 04

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022
Original source:
https://malvuln.com/advisory/76c09bc82984c7f7ef55eb13018e0d87.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Bushtrommel.122
Vulnerability: Authentication Bypass
Description: The malware listens on TCP port 31745 runs an ftp server on
port 1030. Attackers who can reach infected systems can logon using any
username/password…

Cyber Security News

Monthly Archives: August 2022

ZDI-22-1057: Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1058: Foxit PDF Reader AcroForm resetForm Out-Of-Bounds Read Information Disclosure Vulnerability

ZDI-22-1059: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1060: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

ZDI-22-1061: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1062: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1063: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1064: OPC Foundation UA .NET Standard BrowseRequest Missing Authentication Information Disclosure Vulnerability

Backdoor.Win32.Bushtrommel.122 / Unauthenticated Remote Command Execution

Backdoor.Win32.Bushtrommel.122 / Authentication Bypass

News, Advisories and much more