CVE-2017-10951 : This vulnerability allows remote attackers to execute arbitrary code on vulnerab

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within app.launchURL method. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code under the context of the current process. Was ZDI-CAN-4724.

Published 2017-08-29 13:29:00

Updated 2019-10-09 23:21:51

Source Zero Day Initiative

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2017-10951

Foxitsoftware » Foxit Reader » Version: 8.3.0.14878
cpe:2.3:a:foxitsoftware:foxit_reader:8.3.0.14878:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-10951

EPSS FAQ

17.86%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 95 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-10951

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-10951

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Assigned by:
- nvd@nist.gov (Primary)
- zdi-disclosures@trendmicro.com (Secondary)

References for CVE-2017-10951

http://www.securitytracker.com/id/1039213

Foxit Reader Input Validation Flaw in 'app.launchURL' Lets Remote Users Execute Arbitrary Code - SecurityTracker
Third Party Advisory;VDB Entry
https://zerodayinitiative.com/advisories/ZDI-17-691

ZDI-17-691 | Zero Day Initiative
Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/100409

Foxit Reader CVE-2017-10951 Remote Command Injection Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2017-10951

Products affected by CVE-2017-10951

Exploit prediction scoring system (EPSS) score for CVE-2017-10951

CVSS scores for CVE-2017-10951

CWE ids for CVE-2017-10951

References for CVE-2017-10951