Remote Code Execution Vulnerability in Foxit Reader and PhantomPDF via Crafted JPEG2000 Image in PDF Document

Remote Code Execution Vulnerability in Foxit Reader and PhantomPDF via Crafted JPEG2000 Image in PDF Document

CVE-2016-8877 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Heap buffer overflow (Out-of-Bounds write) vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows allows remote attackers to execute arbitrary code via a crafted JPEG2000 image embedded in a PDF document, aka a "corrupted suffix pattern" issue.

Learn more about our Web Application Penetration Testing UK.