CVE-2016-8334

Published: Jan 6, 2017Modified: May 6, 2026

3.3

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.

Affected (1)

Products: Foxitsoftware: Reader

Foxitsoftware

1 product

Reader

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Foxitsoftware Reader	Version 8.0.2.805

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (4)

http://www.securityfocus.com/bid/93799

Source: talos-cna@cisco.com

http://www.talosintelligence.com/reports/TALOS-2016-0201/

Source: talos-cna@cisco.com

Technical DescriptionThird Party Advisory

http://www.securityfocus.com/bid/93799

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.talosintelligence.com/reports/TALOS-2016-0201/

Source: af854a3a-2127-422b-91ae-364da2661108

Technical DescriptionThird Party Advisory

Timeline

No history available yet.