4 matches found
Foxit PhantomPDF < 9.1 Multiple Vulnerabilities
According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 9.1. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid119838; scriptversion"1.6...
CVE-2018-3850
An exploitable use-after-free vulnerability exists in the JavaScript engine Foxit Software Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...
CVE-2018-3850
CVE-2018-3850 is a use-after-free vulnerability in Foxit Software’s Foxit PDF Reader JavaScript engine (v9.0.1.1049) that can be triggered by opening a specially crafted PDF. The issue reuses a previously freed memory object, allowing arbitrary code execution. Attack requires user interaction (op...
KLA11237 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF
Multiple serious vulnerabilities have been found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An unsafe DLL loading...