Out-of-Bounds Read Information Disclosure and Crash in Foxit Reader and PhantomPDF

Out-of-Bounds Read Information Disclosure and Crash in Foxit Reader and PhantomPDF

CVE-2019-5007 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is an Out-of-Bounds Read Information Disclosure and crash due to a NULL pointer dereference when reading TIFF data during TIFF parsing.

Learn more about our Web Application Penetration Testing UK.