Use-After-Free and Type Confusion Vulnerability in Foxit 3D Plugin Beta

Use-After-Free and Type Confusion Vulnerability in Foxit 3D Plugin Beta

CVE-2019-6984 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter a Use-After-Free or Type Confusion and crash during handling of certain PDF files that embed specifically crafted 3D content, due to the use of a wild pointer.

Learn more about our Web Application Penetration Testing UK.