From:
Secunia (secunia.com/advisories/29941)
Rating:
Highly critical
Description:
Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the "util.printf()" JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file.
Successful exploitation allows execution of arbitrary code.
The vulnerability is confirmed in version 2.3 build 2825. Other versions may also be affected.
Solution:
The vulnerability is fixed in upcoming version 2.3 build 2912.
Download at: foxitsoftware.com or use the update option in the help menu.
Full Version: Foxit Reader "util.printf()" Buffer Overflow
TotalChoice Hosting Family Forums > TotalChoice Hosting General Support > Security Discussions > Software/Scripts/Other Alerts
Thanks Thomas
The updated version taking care of this problem has now been released (build number seems to have been changed though). 
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.