Foxit Reader bug lets attackers run malicious code via PDFs

Topic

New Reply

https://www.bleepingcomputer.com/news/security/foxit-reader-bug-lets-attackers-run-malicious-code-via-pdfs/

Foxit Software, the company behind the highly popular Foxit Reader, has published security updates to fix a high severity remote code execution (RCE) vulnerability affecting the PDF reader.

This security flaw could allow attackers to run malicious code on users’ Windows computers and, potentially, take over control.

1 user thanked author for this post.

Paul

Reply | Quote

Replies

The Foxit website https://www.foxitsoftware.com/support/security-bulletins.html
says:
“Update your applications to the latest versions by following one of the methods below.
• From the “Help” tab of Foxit Reader or Foxit PhantomPDF, click on “Check for Updates” and update to the latest version.
• Click here to download the updated version of Foxit Reader from our website.”

However, the “Check for Updates” button in Foxit 10.1.3.37598 did not work for me. It simply said my software was up to date. I had to manually download 10.1.4 to get the update.

Dell XPS17, 11th Gen Intel I7, 64gb RAM, Windows 11 Home 23H2

Reply | Quote

From the “Help” tab of Foxit Reader or Foxit PhantomPDF, click on “Check for Updates” and update to the latest version.

The first one I did yesterday I had to hit check for updates a couple times. All of the machines I’ve done today grab it straight away.

Reply | Quote

Manually updated to Version: 10.1.4.37651.

Check for updates button in app doesn’t appear to be working.

Windows 10 Pro 22H2

Reply | Quote

John,

Check your Settings. I had the same problem but looked and Foxit was set to automatically update. I changed it to Manual and then the update button worked. Don’t know why you can’t check manually when automatic is selected but you can’t.

HTH 😎

May the Forces of good computing be with you!

RG

PowerShell & VBA Rule!
Computer Specs

Reply | Quote

Didn’t work for me RG, I still had to go to Foxit and manually download the newest version.

Don't take yourself so seriously, no one else does 🙂
All W10 Pro at 22H2,(2 Desktops, 1 Laptop).

Reply | Quote

I switched long time ago from Adobe PDF reader and Foxit (after the hack) to Sumatra Portable.

FOXIT PDF READER & FOXIT PHANTOMPDF, THE MOST DANGEROUS PDF TOOLS.

Foxit has determined that unauthorized access to its data systems took place recently

vBulletin, Foxit Software forums hacked by Coldzer0; hundreds of thousands of users’ info stolen

Reply | Quote

Foxit Reader Portable 10.1.4

Reply | Quote