Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the “util.printf()” JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file. Successful exploitation allows execution of arbitrary code. Foxit Reader 2.3 build 2825 is affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/66522/secunia-foxit.txt
Source: https://packetstormsecurity.com/files/66522/secunia-foxit.txt.html