Published: 30/03/2015 Updated: 03/12/2016

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

VMScore: 445

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 up to and including 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.

Vulnerable Product	Search on Vulmon	Subscribe to Product
foxitsoftware foxit reader 7.0
foxitsoftware foxit reader 7.0.6
foxitsoftware foxit reader 6.1.2
foxitsoftware foxit reader 6.1.4
foxitsoftware foxit reader 6.1
foxitsoftware foxit reader 6.2
foxitsoftware foxit reader 6.2.1

Foxit Reader 7061126 Unquoted Service Path Elevation Of Privilege Vendor: Foxit Software Incorporated Product web page: wwwfoxitsoftwarecom Affected version: 7061126 and 61 Summary: Foxit Reader is a small, lightning fast, and feature rich PDF viewer which allows you to create (free PDF creation), open, view, sign, and print any ...

NVD-CWE-Other http://www.foxitsoftware.com/support/security_bulletins.php#FRD-25 http://www.exploit-db.com/exploits/36390 http://packetstormsecurity.com/files/130840/Foxit-Reader-7.0.6.1126-Privilege-Escalation.html http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5235.php http://www.securitytracker.com/id/1031879 http://www.securityfocus.com/bid/73432 https://nvd.nist.gov https://www.exploit-db.com/exploits/36390/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-2789

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect