Memory Corruption Vulnerability in Foxit Reader and PhantomPDF

Memory Corruption Vulnerability in Foxit Reader and PhantomPDF

CVE-2019-5005 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service (application crash) via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption.

Learn more about our Web Application Penetration Testing UK.