CVE-2015-8580
published 2015-12-16CVE-2015-8580: Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allow remote attackers to execute arbitrary code via a crafted PDF document.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | foxit_reader | <= 7.2.0.722 | — |
| foxitsoftware | phantompdf | <= 7.2.0.722 | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.zerodayinitiative.com/advisories/ZDI-15-622http://www.zerodayinitiative.com/advisories/ZDI-15-623https://www.foxitsoftware.com/support/security-bulletins.php#FRD-34http://www.zerodayinitiative.com/advisories/ZDI-15-622http://www.zerodayinitiative.com/advisories/ZDI-15-623https://www.foxitsoftware.com/support/security-bulletins.php#FRD-34
2015-12-16
Published