RCE Stack Buffer Overflow in Foxit Reader Plugin 2.2.1.530
CVE-2013-10068 Published on August 5, 2025
Foxit Reader <= 5.4.5.0114 Plugin URL Processing Buffer Overflow
Foxit Reader Plugin version 2.2.1.530, bundled with Foxit Reader 5.4.4.11281, contains a stack-based buffer overflow vulnerability in the npFoxitReaderPlugin.dll module. When a PDF file is loaded from a remote host, an overly long query string in the URL can overflow a buffer, allowing remote attackers to execute arbitrary code.
Weakness Type
What is a Stack Overflow Vulnerability?
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CVE-2013-10068 has been classified to as a Stack Overflow vulnerability or weakness.
Products Associated with CVE-2013-10068
Want to know whenever a new CVE is published for Foxit Software Foxit Reader? stack.watch will email you.
Affected Versions
Foxit Reader:- Version *, <= 5.4.5.0114 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.