CVE-2015-2790

Foxit Reader, Enterprise Reader, and PhantomPDF < 7.1 - Denial of Service via GIF Image LZWMinimumCodeSize

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-2790. PoCs published by Francis Provencher.

AI-analyzed exploit summary The document describes a memory corruption vulnerability in Foxit Reader 7.x due to improper handling of LZWMinimumCodeSize in GIF files. It includes a timeline and references to PoC GIF files but does not contain executable exploit code.

Description

Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.

Exploits (2)

exploitdb WRITEUP
by Francis Provencher · textdoswindows
https://www.exploit-db.com/exploits/36334

The document describes a memory corruption vulnerability in Foxit Reader 7.x due to improper handling of LZWMinimumCodeSize in GIF files. It includes a timeline and references to PoC GIF files but does not contain executable exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Foxit Reader 7.x
No auth needed
Prerequisites: Specially crafted GIF file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP
by Francis Provencher · textdoswindows
https://www.exploit-db.com/exploits/36335

The document describes a memory corruption vulnerability in Foxit Reader 7.x due to mishandling of the Size member in GIF DataSubBlock structures. It includes a report timeline and references to PoC GIF files but does not contain exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Foxit Reader 7.x
No auth needed
Prerequisites: Victim must open a maliciously crafted GIF file in Foxit Reader 7.x
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id/1031878
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/73430
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/119303
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031877
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/119302
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/36334
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/36335

Scores

EPSS 0.2306
EPSS Percentile 97.5%

Details

CWE
CWE-20
Status published
Products (3)
foxitsoftware/enterprise_reader < 7.0.6.1126
foxitsoftware/foxit_reader < 7.0.6.1126
foxitsoftware/phantompdf < 7.0.6.1126
Published Mar 30, 2015
Tracked Since Feb 18, 2026