GCVE - cpe:2.3:a:foxitsoftware:foxit_reader:2.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:foxitsoftware:foxit_reader:2.0:*:*:*:*:*:*:*

part: a version: 2.0 update: *

Vendor	Foxitsoftware (`432505a3-624b-5d0c-b6e3-841531927527`)
Product	Foxit Reader (`058768da-164a-5e12-a06d-4983e7214eaf`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-4337`	vulnerable	2026-06-03 14:32:18.421099	Details available Foxit Reader before 5.3 on Windows XP and Windows 7 allows remote attackers to execute arbitrary code via a PDF document with a crafted attachment that triggers calculation of a negative number during processing of cross references. Published: 2012-08-23T15:00:00.000Z Updated: 2024-09-16T19:56:39.365Z Open on db.gcve.eu Reference links http://securitytracker.com/id?1027424 http://www.osvdb.org/84808 http://technet.microsoft.com/security/msvr/msvr12-013 http://www.foxitsoftware.com/Secure_PDF_Reader/security_bulletins.php http://secunia.com/advisories/50359	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3691`	vulnerable	2026-06-03 14:31:21.619637	Details available Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory. Published: 2011-09-27T19:00:00.000Z Updated: 2024-09-16T16:43:37.256Z Open on db.gcve.eu Reference links http://www.solutionary.com/index/SERT/Vuln-Disclosures/Foxit-Reader.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1908`	vulnerable	2026-06-03 14:31:04.403810	Details available Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document. Published: 2011-06-24T20:00:00.000Z Updated: 2024-08-06T22:46:00.196Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/48359 http://www.microsoft.com/technet/security/advisory/msvr11-005.mspx https://exchange.xforce.ibmcloud.com/vulnerabilities/68145 http://www.foxitsoftware.com/products/reader/security_bulletins.php#freetype	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0332`	vulnerable	2026-06-03 14:30:48.446115	Details available Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom before 2.3.3.1112 allows remote attackers to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow. Published: 2011-02-25T18:00:00.000Z Updated: 2024-08-06T21:51:07.762Z Open on db.gcve.eu Reference links http://secunia.com/advisories/43440 http://www.vupen.com/english/advisories/2011/0508 http://secunia.com/secunia_research/2011-14/ http://secunia.com/advisories/43329 http://www.foxitsoftware.com/pdf/reader/security_bulletins.php#memory	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1104`	vulnerable	2026-06-03 14:28:39.121116	Details available Stack-based buffer overflow in Foxit Reader before 2.3 build 2912 allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file, related to the util.printf JavaScript function and floating point specifiers in format strings. Published: 2008-05-21T10:00:00.000Z Updated: 2024-08-07T08:08:57.558Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/42531 http://www.securityfocus.com/archive/1/492289/100/0/threaded http://www.securitytracker.com/id?1020050 http://www.kb.cert.org/vuls/id/119747 http://www.vupen.com/english/advisories/2008/1572	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.