CVE-2017-8455
published 2017-05-03CVE-2017-8455: Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | foxit_reader | <= 8.2.0.2051 | — |
| foxitsoftware | phantompdf | <= 8.2.0.2192 | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/98319http://www.zerodayinitiative.com/advisories/ZDI-17-140/https://www.foxitsoftware.com/support/security-bulletins.phphttp://www.securityfocus.com/bid/98319http://www.zerodayinitiative.com/advisories/ZDI-17-140/https://www.foxitsoftware.com/support/security-bulletins.php
2017-05-03
Published