Foxit Enterprise Reader 8.0.2 has been released by Foxit Software. Foxit Enterprise Reader is a free PDF reader designed to meet the needs of an enterprise. It is designed to be fully compatible with Adobe Reader and provides full-fidelity viewing of PDF documents.
New Features in Foxit Reader 8.0.2
- Use ADAL (Active Directory Authentication Library) authentication to log into RMS in Foxit Reader (Enterprise Packaging) to open/decrypt PDFs without requiring the installation of the Microsoft Online Services Sign-in Assistant.
Improvements in Foxit Reader 8.0.2
- Provides improvements to the ConnectedPDF feature as well as several user experience enhancements.
Issues Addressed in Foxit Reader 8.0.2
- Fixed some security and stability issues.
Vulnerability Details
- Addressed potential issues where the application could be exposed to a TIFF Parsing Out-of-Bounds Read/Write vulnerability, which could be leveraged by attackers to execute remote code or leak information.
- Addressed a potential issue where the application could be exposed to a Use-After-Free vulnerability when attempting to parse malformed FlateDecode Streams, which could be leveraged by attackers to leak sensitive information or execute remote code.
- Addressed potential issues where the application could be exposed to an Out-Of-Bounds Read/Write vulnerability when parsing JPEG2000 files, which could be leveraged by attackers to leak information or execute remote code.
- Addressed a potential issue where the application could be exposed to memory corruption vulnerability when parsing JPEG2000 files, which could cause remote code execution.
- Addressed a potential issue where the application could be exposed to a DLL hijacking vulnerability that could allow an unauthenticated remote attacker to execute arbitrary code on the targeted system.
- Addressed potential issues where the application could be exposed to a JPXDecode Out-of-Bounds Read/Write vulnerability when processing specially crafted PDF files with malformed JPXDecode streams, which could cause information leak or remote code execution (CVE-2016-6867).
- Addressed a potential issue where the application could be exposed to an Out-of-Bounds Read vulnerability when processing specially crafted BMP files, which could cause information leak.
- Addressed a potential memory corruption vulnerabilities which could cause the application to crash unexpectedly (CVE-2016-6868).
Foxit Enterprise Reader is one of the applications that is managed and updated by ODS. If you are a current customer who has requested Foxit Enterprise Reader, ODS will automatically update your version over the next few days. The update will install silently. No user interaction is required. There are no additional fees or charges for ODS to update your version of Foxit Enterprise Reader.
If you would like assistance managing and deploying Foxit Enterprise Reader for PCs, please contact H Tech Solutions using the URL below.
H Tech Solutions Blog by Harris Schneiderman is licensed under a Creative Commons Attribution 4.0 International License.
Permissions beyond the scope of this license may be available at https://htechsolutions.biz/contact-us