CVE-2014-8074
Published Oct 17, 2014
Last updated 9 years ago
Overview
- Description
- Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 through 5.0.1820 before 5.0.2.924 allows remote attackers to execute arbitrary code via a long string, related to global variables.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D028D2A-E5B0-4A9E-98F4-B2D5A27E0228"
},
{
"criteria": "cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7BB1C090-E505-4EDF-AF03-6876A41323B8"
},
{
"criteria": "cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1D8EF06-CF69-4BA7-946C-18731A55EE1D"
},
{
"criteria": "cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F384A455-7EEF-4E26-9923-2B411A6D0572"
},
{
"criteria": "cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.0.1.820:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56E14171-24CC-4D3C-A382-E761728CEE27"
}
],
"operator": "OR"
}
]
}
]