CVE-2018-9948 PoC — Foxit Reader 安全漏洞

Source

https://github.com/manojcode/Foxit-Reader-RCE-with-virualalloc-and-shellcode-for-CVE-2018-9948-and-CVE-2018-9958

Associated Vulnerability

Title:Foxit Reader 安全漏洞 (CVE-2018-9948)
Description:This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of typed arrays. The issue results from the lack of proper initialization of a pointer prior to accessing it. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. Was ZDI-CAN-5380.

Description

Foxit Reader version 9.0.1.1049 Use After Free with ASLR and DEP bypass on heap

Readme

# Custom Exploit : Foxit Reader version 9.0.1.1049 Use After Free with ASLR and DEP bypass on heap
My Custom Exploit : Foxit-Reader-RCE-with-virualalloc-and-shellcode-for-CVE-2018-9948-and-CVE-2018-9958 Custom exploit for Win 7
* Has space for shellcode 
* My custom ROP chain makes space for shellcode in the heap
* For Win 7

File Snapshot


 [4.0K]  /data/pocs/d9d27021bd8900524a581bba7736db4af104e30a
├── [8.0K]  foxit-download-exe.txt
├── [8.7K]  FoxitReader-custom-exploit-virtualalloc-shellcode.py
├── [7.4K]  foxit-reverse-shell-p80
├── [ 34K]  LICENSE
└── [ 327]  README.md

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!