CVE-2017-8453
published 2017-05-03CVE-2017-8453: Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly…
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | foxit_reader | <= 8.2.0.2051 | — |
| foxitsoftware | phantompdf | <= 8.2.0.2192 | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/98317http://www.zerodayinitiative.com/advisories/ZDI-17-134/https://www.foxitsoftware.com/support/security-bulletins.phphttp://www.securityfocus.com/bid/98317http://www.zerodayinitiative.com/advisories/ZDI-17-134/https://www.foxitsoftware.com/support/security-bulletins.php
2017-05-03
Published