Vulnerability-Lookup

CNVD-2019-21954

Vulnerability from cnvd - Published: 2019-07-09

Title

Foxit PDF SDK ActiveX命令注入漏洞（CNVD-2019-21954）

Description

Foxit PDF SDK ActiveX是中国福昕（Foxit）公司的一个PDF软件开发工具包，也是一个可视化编程组件。该产品提供PDF显示及注释等功能。 Foxit PDF SDK ActiveX 5.5.0及之前版本中存在命令注入漏洞，该漏洞源于ActiveX缺少安全权限控制。远程攻击者可利用该漏洞执行二进制文件或程序。

Severity

中

Patch Name

Foxit PDF SDK ActiveX 命令注入漏洞（CNVD-2019-21954）的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1045

Reference

https://www.foxitsoftware.com/support/security-bulletins.php

Impacted products

Name
Foxit PDF SDK ActiveX <5.5.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-19445",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2018-19445"
    }
  },
  "description": "Foxit PDF SDK ActiveX\u662f\u4e2d\u56fd\u798f\u6615\uff08Foxit\uff09\u516c\u53f8\u7684\u4e00\u4e2aPDF\u8f6f\u4ef6\u5f00\u53d1\u5de5\u5177\u5305\uff0c\u4e5f\u662f\u4e00\u4e2a\u53ef\u89c6\u5316\u7f16\u7a0b\u7ec4\u4ef6\u3002\u8be5\u4ea7\u54c1\u63d0\u4f9bPDF\u663e\u793a\u53ca\u6ce8\u91ca\u7b49\u529f\u80fd\u3002\n\nFoxit PDF SDK ActiveX 5.5.0\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eActiveX\u7f3a\u5c11\u5b89\u5168\u6743\u9650\u63a7\u5236\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4e8c\u8fdb\u5236\u6587\u4ef6\u6216\u7a0b\u5e8f\u3002",
  "discovererName": "Steven Seeley (mr_me) of Source Incite",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1045",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-21954",
  "openTime": "2019-07-09",
  "patchDescription": "Foxit PDF SDK ActiveX\u662f\u4e2d\u56fd\u798f\u6615\uff08Foxit\uff09\u516c\u53f8\u7684\u4e00\u4e2aPDF\u8f6f\u4ef6\u5f00\u53d1\u5de5\u5177\u5305\uff0c\u4e5f\u662f\u4e00\u4e2a\u53ef\u89c6\u5316\u7f16\u7a0b\u7ec4\u4ef6\u3002\u8be5\u4ea7\u54c1\u63d0\u4f9bPDF\u663e\u793a\u53ca\u6ce8\u91ca\u7b49\u529f\u80fd\u3002\r\nFoxit PDF SDK ActiveX 5.5.0\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eActiveX\u7f3a\u5c11\u5b89\u5168\u6743\u9650\u63a7\u5236\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4e8c\u8fdb\u5236\u6587\u4ef6\u6216\u7a0b\u5e8f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Foxit PDF SDK ActiveX \u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2019-21954\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Foxit PDF SDK ActiveX \u003c5.5.0"
  },
  "referenceLink": "https://www.foxitsoftware.com/support/security-bulletins.php",
  "serverity": "\u4e2d",
  "submitTime": "2019-06-28",
  "title": "Foxit PDF SDK ActiveX\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2019-21954\uff09"
}

CVE-2018-19445 (GCVE-0-2018-19445)

Vulnerability from cvelistv5 – Published: 2019-06-17 19:42 – Updated: 2024-08-05 11:37

Summary

A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when the JavaScript API app.launchURL is used. An attacker can leverage this to gain remote code execution.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

1 reference

URL	Tags
https://www.foxitsoftware.com/support/security-bu…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T11:37:11.165Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.foxitsoftware.com/support/security-bulletins.php"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when the JavaScript API app.launchURL is used. An attacker can leverage this to gain remote code execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-06-17T19:42:35.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.foxitsoftware.com/support/security-bulletins.php"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-19445",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when the JavaScript API app.launchURL is used. An attacker can leverage this to gain remote code execution."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.foxitsoftware.com/support/security-bulletins.php",
              "refsource": "MISC",
              "url": "https://www.foxitsoftware.com/support/security-bulletins.php"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-19445",
    "datePublished": "2019-06-17T19:42:35.000Z",
    "dateReserved": "2018-11-22T00:00:00.000Z",
    "dateUpdated": "2024-08-05T11:37:11.165Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-21954

CVE-2018-19445 (GCVE-0-2018-19445)

Tags

Sightings

Nomenclature