CVE-2019-14210

CVE-2019-14210 affects Foxit PhantomPDF before 8.3.10. The issue is a memory corruption vulnerability caused by an invalid pointer copy from a destructed string object, as described in multiple sources. Affected component is Foxit PhantomPDF (Windows), with the underlying cause being improper han...

CVE-2019-14209

Foxit PhantomPDF before 8.3.10 is affected by CVE-2019-14209, which causes a Heap Corruption due to data desynchrony when adding AcroForm. The issue is described as a heap corruption vulnerability impacting the product, with CVSS v3.0 vector indicating network access, no user interaction, and hig...

CVE-2019-14209

An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm...

CVE-2019-14208

An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain portfolio that contains a null dictionary...

CVE-2019-14208

CVE-2019-14208 affects Foxit PhantomPDF prior to 8.3.10. The issue is a NULL pointer dereference that can crash the application when extracting a PDF object from a document or when parsing a portfolio containing a null dictionary. This vulnerability is documented across multiple sources (NVD/NVD-...

CVE-2019-14207

CVE-2019-14207 affects Foxit PhantomPDF prior to 8.3.11. The issue is a crash caused by an infinite loop in the clone function, arising from confused relationships between a child and parent object due to an append error. This results in a denial of service-like crash when cloning objects. The vu...

CVE-2019-14207

An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child and parent object caused by an append error...

PT-2019-13535 · Foxit · Foxit Phantompdf

Name of the Vulnerable Software and Affected Versions: Foxit PhantomPDF versions prior to 8.3.11 Description: The issue arises from the lack of proper validation of the existence of an object prior to performing operations on that object when executing JavaScript, which could cause the applicatio...

PT-2019-13537 · Foxit · Foxit Phantompdf

Name of the Vulnerable Software and Affected Versions: Foxit PhantomPDF versions prior to 8.3.11 Description: The issue is related to the repeated release of the signature dictionary during CSG SignatureF and CPDF Document destruction, which could cause the application to crash. Recommendations:...

Foxit PhantomPDF CVE-2019-17139 Out of Bounds Write Remote Code Execution Vulnerability

Description Foxit PhantomPDF is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application or gain sensitive information. Failed exploit attempts will likely cause a denial-of-service condition...

Foxit PhantomPDF < 9.6 Multiple Vulnerabilities

According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 9.6. It is, therefore affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's...

Foxit Reader and Foxit PhantomPDF Information Disclosure Vulnerability (CNVD-2019-21939)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. An information disclosure vulnerability exists in Foxit Reader 9.5.0.20723 and earlier versions and Foxit PhantomPDF 9.5.0.20723 and earlier versions for Windows platforms. The vulnerability stems from a...

Foxit PhantomPDF addWatermarkFromText Remote Code Execution Vulnerability

Foxit PhantomPDF is a multifunctional PDF editor. A remote code execution vulnerability exists in the removeField method in Foxit PhantomPDF 9.5.0.20723 and earlier versions when handling watermarks in AcroForm. The vulnerability stems from a failure to validate the existence of an object before...

Foxit PhantomPDF Button Calculate Remote Code Execution Vulnerability

Foxit PhantomPDF is a multifunctional PDF editor. A remote code execution vulnerability exists in the handling of Calculate operations in Foxit PhantomPDF 9.5.0.20723 and earlier versions. The vulnerability stems from a failure to validate the existence of an object before performing an operation...

Foxit PhantomPDF Calculate Memory Misreference Vulnerability

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A memory misreference vulnerability exists in the handling of the Calculate operation in Foxit PhantomPDF 9.5.0.20723 and earlier versions. The vulnerability stems from a failure to verify the existence ...

Foxit PhantomPDF addWatermarkFromText Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the removeField...

Foxit PhantomPDF Button Calculate Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit PhantomPDF Button Calculate Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit PhantomPDF < 8.3.8, 9.x < 9.3 Multiple Vulnerabilities (Jun 2019) - Windows

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...

Foxit PhantomPDF < 8.3.10, 9.x < 9.5 Multiple Vulnerabilities (Jun 2019) - Windows

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...