CVE-2019-20828
https://notcve.org/view.php?id=CVE-2019-20828
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.6. Presenta un desbordamiento de búfer porque no ocurre una corrección de bucle después de que JavaScript actualiza Field APs • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2019-20829
https://notcve.org/view.php?id=CVE-2019-20829
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.6. Presenta una desreferencia del puntero NULL por medio de la función FXSYS_wcsl en un archivo Epub • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-476: NULL Pointer Dereference •
CVE-2019-20830
https://notcve.org/view.php?id=CVE-2019-20830
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has an out-of-bounds write when Internet Explorer is used. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.6. Presenta una escritura fuera de límites cuando es usado Internet Explorer • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-787: Out-of-bounds Write •
CVE-2019-20832
https://notcve.org/view.php?id=CVE-2019-20832
An issue was discovered in Foxit PhantomPDF before 8.3.10. It has homograph mishandling. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.10. Presenta un manejo inapropiado de homógrafos • https://www.foxitsoftware.com/support/security-bulletins.php •
CVE-2019-20833
https://notcve.org/view.php?id=CVE-2019-20833
An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.10. Presenta un manejo inapropiado de las credenciales en la nube, como es demostrado por Google Drive • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-287: Improper Authentication •