Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.805364
Category:General
Title:Foxit Reader Cloud Plugin Windows Search Path Vulnerability
Summary:The host is installed with Foxit Reader; Cloud Plugin and is prone to windows search path Vulnerability.
Description:Summary:
The host is installed with Foxit Reader
Cloud Plugin and is prone to windows search path Vulnerability.

Vulnerability Insight:
The flaw is due to SYSTEMDRIVE folder,
local users can gain privileges via a Trojan horse.

Vulnerability Impact:
Successful exploitation will allow local
attackers to gain privileges and execute malicious files.

Affected Software/OS:
Foxit Reader version 6.1 before version
7.0.6.1126

Solution:
Upgrade to Foxit Reader version
7.1 or later.

CVSS Score:
4.4

CVSS Vector:
AV:L/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-2789
BugTraq ID: 73432
http://www.securityfocus.com/bid/73432
http://www.exploit-db.com/exploits/36390
http://packetstormsecurity.com/files/130840/Foxit-Reader-7.0.6.1126-Privilege-Escalation.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5235.php
http://www.securitytracker.com/id/1031879
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.