A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when the JavaScript API app.launchURL is used. An attacker can leverage this to gain remote code execution.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
Link | Providers |
---|---|
https://www.foxitsoftware.com/support/security-bulletins.php |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T11:37:11.165Z
Reserved: 2018-11-22T00:00:00
Link: CVE-2018-19445

No data.

Status : Modified
Published: 2019-06-17T20:15:09.650
Modified: 2024-11-21T03:57:56.073
Link: CVE-2018-19445

No data.

No data.