CVE-2016-8875 in Readerinfo

Summary

The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image, aka "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ConvertToPDF_x86!CreateFXPDFConvertor."

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

10/21/2016

Disclosure

10/31/2016

Moderation

VulDB entry created

Entries

VDB-93201 (1)

CPE

ready

CWE

CWE-125 (Confirmed)

CVSS

5.3

EPSS

0.00088

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8875
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8875
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8875/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!