said by mysec: said by Lagz:
In the recent Foxit plugin vulnerability, it was the plugin that was at fault and not Foxit reader directly.
Thanks for that update! More reason to keep the plugin disabled.
Note, however, that there is a social engineering component to this exploit:
Italian security researcher Andrea Micalizzi discovered that the latest version of the software crashes if users are tricked into clicking on an overly long web link.
Yep. Sadly there is no fix or update for social engineering.