NVD

Id
28877  
Name
CVE-2015-8843  
Description
The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges by writing crafted data to a shared memory region, which triggers memory corruption.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2016-04-13  
Modified Date
2016-04-18  
Seq
2015-8843  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
152166 28877 CVE-2015-8843 http://www.zerodayinitiative.com/advisories/ZDI-15-640  View
152167 28877 CVE-2015-8843 https://www.foxitsoftware.com/support/security-bulletins.php#FRD-35  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
11744 JVNDB-2015-007064 Foxit Reader の Foxit クラウドアップデートサービスにおける権限を取得される脆弱性 Foxit Reader の Foxit クラウドアップデートサービス (FoxitCloudUpdateService) は、Cloud プラグインへのアップデートが有効になっている場合、権限を取得される脆弱性が存在します。 CVE-2015-8843 86068 CVE-2015-8843 28877 6.9 7.4 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-007064.html 2015-10-08 2016-04-20 View