As a small and fast PDF viewer, Foxit Reader currently has over 50 million users all around the world. After keeping users waiting for almost two months, Foxit Reader 3.0 has been released and introduces many fascinating new features such as multimedia design and Foxit OnDemand Content Management.
- Fixed the issue of stack-based buffer overflow.
Foxit PDF files include actions associated with different triggers. If an
action (Open/Execute a file, Open a web link, etc.) is defined in the PDF
files with an overly long filename argument and the trigger condition is
satisfied, it will cause a stack-based buffer overflow.
- Fixed the issue of security authorization bypass.
If an action (Open/Execute a file, Open a web link, etc.) is defined in the
PDF files and the trigger condition is satisfied, Foxit Reader will do the
action defined by the creator of the PDF file without popping up a dialog
box to confirm.
- Fixed the issue of JBIG2 Symbol Dictionary Processing
While decoding a JBIG2 symbol dictionary segment, an array of 32-bit
elements is allocated having a size equal to the number of exported symbols,
but left uninitialised if the number of new symbols is zero. The array is
later accessed and values from uninitialised memory are used as pointers
when reading memory and performing calls.
Tools and Utilities
3.0 build 1506
Product page: here