CVSS: 4.7EPSS: 0%CPEs: 3EXPL: 0CVE-2017-6883
https://notcve.org/view.php?id=CVE-2017-6883
14 Mar 2017 — The ConvertToPDF plugin in Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image. The vulnerability could lead to information disclosure; an attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. El plugin ConvertToPDF en Foxit Reader en versiones anteriores a 8.2.1 y PhantomPD... • http://www.securityfocus.com/bid/96870 • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2017-5556
https://notcve.org/view.php?id=CVE-2017-5556
23 Jan 2017 — The ConvertToPDF plugin in Foxit Reader before 8.2 and PhantomPDF before 8.2 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG image. The vulnerability could lead to information disclosure; an attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. El plugin ConvertToPDF en Foxit Reader en versiones anteriores a 8.2 y PhantomPDF en v... • http://www.securityfocus.com/bid/95353 • CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8875
https://notcve.org/view.php?id=CVE-2016-8875
31 Oct 2016 — The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image, aka "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ConvertToPDF_x86!CreateFXPDFConvertor." El plugin ConvertToPDF en Foxit Reader y PhantomPDF en versiones anteriores a 8.1 en Windows, cuando se habilita la aplicación gflags... • http://www.securityfocus.com/bid/93608 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8876
https://notcve.org/view.php?id=CVE-2016-8876
31 Oct 2016 — Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted TIFF image embedded in the XFA stream in a PDF document, aka "Read Access Violation starting at FoxitReader." Vulnerabilidad de lectura fuera de límites en Foxit Reader y PhantomPDF en versiones anteriores a 8.1 en Windows, cuando se habilita la aplicación gflags, permite a atacantes remotos ejecutar código arbitrario a través ... • http://www.securityfocus.com/bid/93608 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8877
https://notcve.org/view.php?id=CVE-2016-8877
31 Oct 2016 — Heap buffer overflow (Out-of-Bounds write) vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows allows remote attackers to execute arbitrary code via a crafted JPEG2000 image embedded in a PDF document, aka a "corrupted suffix pattern" issue. Vulnerabilidad de desbordamiento de búfer basado en memoria dinámica (escritura fuera de límites) en Foxit Reader y PhantomPDF en versiones anteriores a 8.1 en Windows permite a atacantes remotos ejecutar código arbitrario a través de una imagen JPEG2000 ... • http://www.securityfocus.com/bid/93608 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8878
https://notcve.org/view.php?id=CVE-2016-8878
31 Oct 2016 — Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted BMP image embedded in the XFA stream in a PDF document, aka "Data from Faulting Address may be used as a return value starting at FOXITREADER." Vulnerabilidad de lectura fuera de límites en Foxit Reader y PhantomPDF en versiones anteriores a 8.1 en Windows, cuando se habilita la aplicación gflags, permite a atacantes remotos ej... • http://www.securityfocus.com/bid/93608 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8879
https://notcve.org/view.php?id=CVE-2016-8879
31 Oct 2016 — The thumbnail shell extension plugin (FoxitThumbnailHndlr_x86.dll) in Foxit Reader and PhantomPDF before 8.1 on Windows allows remote attackers to cause a denial of service (out-of-bounds write and application crash) via a crafted JPEG2000 image embedded in a PDF document, aka an "Exploitable - Heap Corruption" issue. El plugin de la extensión de shell thumbnail (FoxitThumbnailHndlr_x86.dll) en Foxit Reader y PhantomPDF en versiones anteriores a 8.1 en Windows permite a atacantes remotos provocar una denega... • http://www.securityfocus.com/bid/93608 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-4060
https://notcve.org/view.php?id=CVE-2016-4060
22 Apr 2016 — Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to cause a denial of service (application crash) via unspecified vectors. Vulnerabilidad de uso después de liberación de memoria en Foxit Reader y PhantomPDF en versiones anteriores a 7.3.4 en Windows permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de vectores no especificados. • http://www.securityfocus.com/bid/85379 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-4061
https://notcve.org/view.php?id=CVE-2016-4061
22 Apr 2016 — Foxit Reader and PhantomPDF before 7.3.4 on Windows allow remote attackers to cause a denial of service (application crash) via a crafted content stream. Foxit Reader y PhantomPDF en versiones anteriores a 7.3.4 en Windows permiten a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un flujo de contenido manipulado. • http://www.securityfocus.com/bid/90504 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-4062
https://notcve.org/view.php?id=CVE-2016-4062
22 Apr 2016 — Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report format errors recursively, which allows remote attackers to cause a denial of service (application hang) via a crafted PDF. Foxit Reader y PhantomPDF en versiones anteriores a 7.3.4 en Windows reportan incorrectamente errores de formato recursivamente, lo que permite a atacantes remotos provocar una denegación de servicio (colgado de aplicación) a través de un PDF manipulado. • http://www.securityfocus.com/bid/90504 • CWE-19: Data Processing Errors •