Foxit Reader Part3at SOFTWAREFoxit Reader Part3 - 暇つぶし2ch■コピペモード□スレを通常表示□オプションモード□このスレッドのURL■項目テキスト50:名無しさん@お腹いっぱい。 08/05/21 03:08:21 6pxytGde0 しおりどころじゃないな Foxit Reader "util.printf()" Buffer Overflow - Advisories - Secunia http://secunia.com/advisories/29941/ 51:名無しさん@お腹いっぱい。 08/05/21 18:22:02 hDcJNaHG0 http://secunia.com/secunia_research/2008-18/advisory/ 4) Description of Vulnerability Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the "util.printf()" JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file. Successful exploitation allows execution of arbitrary code. ====================================================================== 5) Solution The vulnerability is fixed in upcoming version 2.3 build 2912. ====================================================================== 6) Time Table 23/04/2008 - Vendor notified. 08/05/2008 - Vendor notified again. 08/05/2008 - Vendor response. 20/05/2008 - Public disclosure. 次ページ最新レス表示レスジャンプ類似スレ一覧スレッドの検索話題のニュースおまかせリストオプションしおりを挟むスレッドに書込スレッドの一覧暇つぶし2ch