Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Foxit Reader FreeType2 CFF Font Parsing Vulnerability


  • Please log in to reply
2 replies to this topic

#1 Union_Thug

Union_Thug

    Bleeps with the fishes...


  • Members
  • 2,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:is everything
  • Local time:05:10 PM

Posted 06 August 2010 - 02:56 PM

http://secunia.com/advisories/40903/

Secunia Advisory SA40903
Release Date 2010-08-06

Description
A vulnerability has been reported in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to the use of vulnerable FreeType2 code.

For more information:
SA40816

Solution
Update to version 4.1.1.
Original Advisory
http://www.foxitsoftware.com/pdf/reader/bugfix.php

Secunia Product page: http://secunia.com/advisories/product/30682/

I'm gonna Scan with PSI & use their solution wizard right now.

Edit to add: That was quick & painless. The PSI scan took 2 mins, the solution wizard launched the d/l to v4.1.1, downloaded installed & PSI reported the program "patched"...in less than 10 mins.

REMEMBER to select Custom Install & "untick" all the crap/spy/bloat ware Foxit tries to install (Ask /toolbar/toolbar in reader/ E-Bay homepage/...etc.

Edited by Union_Thug, 07 August 2010 - 04:00 AM.


BC AdBot (Login to Remove)

 


#2 Romeo29

Romeo29

    Learning To Bleep


  • Members
  • 3,194 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:04:10 PM

Posted 08 August 2010 - 08:58 AM

Thanks. I have updated to version Foxit Reader 4.1.1.

#3 Union_Thug

Union_Thug

    Bleeps with the fishes...

  • Topic Starter

  • Members
  • 2,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:is everything
  • Local time:05:10 PM

Posted 08 August 2010 - 12:15 PM

UR welcome. After I updated I was reminded that I was gonna try Nuance PDF Reader, but had forgotten about it. I dl'd yesterday, so far I'm liking it even though it seems to load a fraction slower that Foxit. It has a cleaner & smoother look and an easier to navigate toolbar, IMO.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users