N/A

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 10.0.0.35798. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D objects embedded in PDF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-11226.

N/A

栈缓冲区溢出

mPDF和Foxit PhantomPDF 缓冲区错误漏洞

mPDF是一款使用PHP编写的用于将HTML转换成PDF文件的库。Foxit PhantomPDF是中国福昕（Foxit）公司的一款PDF文档阅读器。 Foxit PhantomPDF存在安全漏洞，该漏洞源于在将用户提供的数据复制到固定长度的基于堆栈的缓冲区之前，没有对其长度进行适当的验证。攻击者可利用该漏洞可以利用此漏洞在当前进程上下文中执行代码。

N/A

N/A