Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Foxit Software Foxit Studio Photo <= 3.6.6.779 Multiple Vulnerabilities
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Foxit Studio Photo is prone to multiple vulnerabilities.
Insight
Insight
The vulnerabilities exist due to the lack of proper validation of user-supplied data, which can result in: - A read past the end of an allocated structure - due to a flaw within the handling of TIF files (CVE-2019-6746) - A write past the end of an allocated structure - due to a flaw within the handling of EZI files (CVE-2019-6747, CVE-2019-6748) - A write past the end of an allocated structure - due to a flaw within the handling of EZIX files (CVE-2019-6749) - A write past the end of an allocated structure - due to a flaw within the handling of EZI files (CVE-2019-6750) - A write past the end of an allocated structure - due to a flaw within the handling of JPG files (CVE-2019-6751) Note: User interaction is required to exploit these vulnerabilities in that the target must visit a malicious page or open a malicious file.
Affected Software
Affected Software
Foxit Studio Photo through version 3.6.6.779.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to Foxit Studio Photo version 3.6.6.909 or later.