Lucene search

K

Kaspersky LabKLA10571

HistoryMay 06, 2015 - 12:00 a.m.

KLA10571 Denial of service vulnerability in Foxit products

2015-05-0600:00:00

Kaspersky Lab

threats.kaspersky.com

21

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.6%

An unspecified vulnerability was found in Foxit products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed GIF in PDF file or vectors related to digital signatures.

Original advisories

Exploitation

Public exploits exist for this vulnerability.

Related products

Foxit-Phantom-PDF-Suite

CVE list

CVE-2015-3632 warning

CVE-2015-3633 critical

Solution

Update to the latest version

Get Foxit products

Impacts

DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Affected Products

Foxit Reader versions earlier than 7.1.5Foxit Enterprise Reader versions earlier than 7.1.5Foxit PhantomPDF versions earlier than 7.1.5

References

www.foxitsoftware.com/support/security_bulletins.php#FRD-26

www.foxitsoftware.com/support/security_bulletins.php#FRD-27

statistics.securelist.com/

threats.kaspersky.com/en/product/Foxit-Phantom-PDF-Suite/

threats.kaspersky.com/en/product/Foxit-Reader/

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.6%

Related for KLA10571

openvas2 cvelist2 cve2 prion2 nvd2