Foxit PDF Reader prior to 11.1 and PDF Editor prior to 11.1, and PhantomPDF prior to 10.1.6, mishandle hidden and incremental data in signed documents. An attacker can write to an arbitrary file, and display controlled contents, during signature verification.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
foxit phantompdf |
||
foxit pdf_reader |
||
foxit pdf_editor |