CVE-2012-4759

Untrusted search path vulnerability in facebook_plugin.fpi in the Facebook plug-in in Foxit Reader 5.3.1.0606 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. NOTE: some of these details are obtained from third party information.

Published: Sep 6, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-4759
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
foxitsoftware / foxit_reader	5.3.1.0606	5.3.1.0606.x

http://archives.neohapsis.com/archives/fulldisclosure/2012-08/0293.html
http://secunia.com/advisories/50348

Vulnerability Database

289,784

CVE-2012-4759