Foxit PhantomPDF and Reader before 9.3 allow remote attackers to execute arbitrary code or cause a denial of service (use-after-free) because properties of Annotation objects are mishandled. This relates to one of five distinct types of Annotation objects.
CPE | Name | Operator | Version |
---|---|---|---|
phantompdf | lt | 9.3 | |
reader | lt | 9.3 |