The recently announced Foxit Reader 9.3 carries along fixes for over hundred security vulnerabilities, containing some that could result in distant code implementation. Foxit Software developed by California-based, the Foxit Reader is a freemium multilingual tool that permits users to generate, view, edit, digitally sign, and printing of the Portable Document Format files. According to Foxit, the reader has about hundreds of millions of users.
Foxit discloses in an advisory that the recent version of the reader brings fixes for a wide range of flaws, containing use-after-free, out-of-bounds, details revelation, sort confusion, and memory fraud flaws, the most terrible of which could effect in distant code implementation.
Most of the continued security flaws stated with this update were detected by security analysts performing activities with the Trend Micro’s Zero Day Initiative. The vulnerabilities are said to influence version 18.104.22.16897 and prior of Foxit PhantomPDF, Foxit Reader and have been stated with the announcement of Foxit PhantomPDF 9.3. and Foxit Reader 9.3.
The security news appeared merely few days before Adobe announced tens of fixes for its own PDF tools. The firm released the availability of Acrobat Reader DC and Acrobat DC (Continuous) 2019.008.20071, Reader DC 2017 and Acrobat 2017 (Classic 2017) 2017.011.30105, and Reader DC and Acrobat DC (Classic 2015) 2015.006.30456, which mention a total number of eighty six security flaws.