CVE-2016-4065
published 2016-04-22CVE-2016-4065: The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted (1) JPEG, (2) GIF, or (3) BMP image.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | foxit_reader | <= 7.3.0.118 | — |
| foxitsoftware | phantompdf | <= 7.3.0.118 | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.zerodayinitiative.com/advisories/ZDI-16-216http://www.zerodayinitiative.com/advisories/ZDI-16-217http://www.zerodayinitiative.com/advisories/ZDI-16-218https://www.foxitsoftware.com/support/security-bulletins.phphttp://www.zerodayinitiative.com/advisories/ZDI-16-216http://www.zerodayinitiative.com/advisories/ZDI-16-217http://www.zerodayinitiative.com/advisories/ZDI-16-218https://www.foxitsoftware.com/support/security-bulletins.php
2016-04-22
Published