KLA11398 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF

Multiple vulnerabilities were found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out-of-bounds Write/Read vulnerability can be exploited remotely to...

Foxit PhantomPDF < 9.4 Multiple Vulnerabilities

According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 9.4. It is, therefore, affected by multiple vulnerabilities: - An out-of-bounds read/write vulnerability and crash when handling XFA element attributes...

Foxit Reader and PhantomPDF for Windows Validation Bypass Vulnerability

Foxit Reader for Windows is China's Foxit Foxit software company's a Windows-based platform for PDF document reader. PhantomPDF for Windows is its commercial version. A security vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and earlier versions f...

Foxit Reader and PhantomPDF null pointer dereference vulnerability (CNVD-2019-04698)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A null pointer back-reference vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and...

Foxit Reader and PhantomPDF Null Pointer Dereference Vulnerability

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A null pointer back-reference vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and...

Foxit Reader and PhantomPDF Denial of Service Vulnerability (CNVD-2019-04699)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A security vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and earlier versions fo...

Foxit Reader and PhantomPDF for Windows Validation Bypass Vulnerability

Foxit Reader for Windows is China's Foxit Foxit software company's a Windows-based platform for PDF document reader. PhantomPDF for Windows is its commercial version. A validation bypass vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and earlier...

Foxit Reader and PhantomPDF for Windows Out-of-Bounds Read Vulnerability

Foxit Reader for Windows is China's Foxit Foxit software company's a Windows-based platform for PDF document reader. PhantomPDF for Windows is its commercial version. An out-of-bounds read vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions for Windows and PhantomPDF 9.3.0.10826...

Foxit PhantomPDF < 9.4 Multiple Vulnerabilities (Jan 2019) - Windows

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...

CVE-2019-5005

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service application crash via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption...

CVE-2019-5006

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is a NULL pointer dereference during PDF parsing...

Memory corruption

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service application crash via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption...

Null pointer dereference

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is a NULL pointer dereference during PDF parsing...

Null pointer dereference

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is an Out-of-Bounds Read Information Disclosure and crash due to a NULL pointer dereference when reading TIFF data during TIFF parsing...

CVE-2019-5006

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is a NULL pointer dereference during PDF parsing...

CVE-2019-5005

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service application crash via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption...

CVE-2019-5005

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service application crash via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption...

CVE-2019-5006

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is a NULL pointer dereference during PDF parsing...

CVE-2019-5005

CVE-2019-5005 affects Foxit Reader and PhantomPDF for Windows, prior to version 9.4. The vulnerability is a memory corruption issue where two bytes are written to the end of allocated memory without ensuring it won’t cause corruption, leading to a possible denial of service (application crash). T...

CVE-2019-5007

CVE-2019-5007 affects Foxit Reader and PhantomPDF for Windows prior to 9.4. It is a NULL pointer dereference during TIFF parsing that causes an out-of-bounds read, leading to information disclosure and a crash. The description in multiple sources confirms the vulnerability lies in TIFF data handl...