Exploit for Use After Free in Foxit Pdf Reader CVE-2022-28672

Name: Exploit for Use After Free in Foxit Pdf Reader CVE-2022-28672
Rating: 5 (36 reviews)

2022-12-02 | CVSS 0.2

## https://sploitus.com/exploit?id=CB847F9C-B699-5DC3-96BB-61A9DA149455
# CVE-2022-28672

This bug was `Use after Free` caused by improper handling of javascript object memory references.

## Blog

-   [Foxit PDF Reader - UaF - RCE - JIT Spraying](https://hacksys.io/blogs/foxit-reader-uaf-rce-jit-spraying-cve-2022-28672)

## Advisory

-   [CVE-2022-28672](https://hacksys.io/advisories/HI-2022-002)

## Demo

[![Foxit PDF Reader Remote Code Execution Demo - CVE-2022-28672](https://img.youtube.com/vi/5K44TxWPKCQ/0.jpg)](https://www.youtube.com/watch?v=5K44TxWPKCQ)