The ConvertToPDF plugin in Foxit Reader and PhantomPDF prior to 8.1 on Windows, when the gflags app is enabled, allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image, aka "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ConvertToPDF_x86!CreateFXPDFConvertor."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
foxitsoftware phantompdf |
||
foxitsoftware reader |