Denial of Service Vulnerability in Foxit Reader and PhantomPDF
CVE-2015-3632

Currently unrated

Key Information:

Vendor
Foxit
Vendor
CVE Published:
1 May 2015

Summary

An exploitable vulnerability exists in Foxit Reader, Enterprise Reader, and PhantomPDF prior to version 7.1.5. This vulnerability allows remote attackers to trigger a denial of service by crafting a malicious GIF image embedded within a PDF file, leading to memory corruption and subsequent crashes of the affected applications.

References

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.