In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is mishandled.
CPE | Name | Operator | Version |
---|---|---|---|
phantompdf | le | 9.7.2.29539 | |
phantompdf | le | 10.0.0.35798 | |
reader | le | 10.0.0.35798 |