Foxitsoftware » Phantompdf : Security Vulnerabilities, CVEs, Published In 2015
Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allow remote attackers to execute arbitrary code via a crafted PDF document.
Max CVSS
6.8
EPSS Score
0.77%
Published
2015-12-16
Updated
2016-11-08
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via vectors related to digital signatures.
Max CVSS
5.0
EPSS Score
0.53%
Published
2015-05-01
Updated
2017-01-03
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.
Max CVSS
4.3
EPSS Score
1.62%
Published
2015-05-01
Updated
2017-01-03
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
Max CVSS
4.3
EPSS Score
78.09%
Published
2015-03-30
Updated
2016-12-03
4 vulnerabilities found