Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted BMP image embedded in the XFA stream in a PDF document, aka "Data from Faulting Address may be used as a return value starting at FOXITREADER."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Foxit Reader和PhantomPDF 越边界读取漏洞
Vulnerability Description
Foxit Reader是中国福昕(Foxit)软件公司的一款PDF文档阅读器。PhantomPDF是一个商业版。 基于Windows平台上的Foxit Reader和PhantomPDF 8.1之前版本中存在越边界读取漏洞。当gflags应用启用时,远程攻击者可通过在PDF文件中的XFA数据流中嵌入BMP图像利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A