Foxit PDF Reader/Editor Update Service Privilege Escalation

The Foxit PDF Reader/Editor is a software application used to view and edit PDF files. A vulnerability exists in the update service of this application, which allows a local attacker with low privileges to modify or replace resources used by the update service, resulting in execution of arbitrary code with SYSTEM privileges.

You're affected if you use A local privilege escalation vulnerability exists. Specific version info not stated in the advisory. If you don't recognise this software, you're probably not affected.

To fix this vulnerability, upgrade to Foxit PDF Reader/Editor Update Service version 9.3.3 or later. You can download the updated service from the official Foxit website:

• For Windows: https://www.foxit.com/support/downloads.html
• For macOS: https://www.foxit.com/support/mac-downloads.html

Immediate mitigations include:

1. Restrict network access to your Foxit PDF Reader/Editor Update Service instance (firewall it from the public internet).
2. Audit admin account activity for suspicious access patterns.
3. Monitor for unauthorized token creation.

• www.foxit.com