CVE-2015-3632

Foxit Reader <7.1.5 - DoS

Title source: llm

Description

Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.

Exploits (1)

exploitdb WRITEUP

by Francis Provencher · textlocalwindows

https://www.exploit-db.com/exploits/36859

View Code ZIP pw:eip

References (6)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/131685/Foxit-Reader-7.1.3.320-Memory-Corruption.html

[Exploit] http://protekresearchlab.com/PRL-2015-05/

[Vendor Advisory] http://www.foxitsoftware.com/support/security_bulletins.php#FRD-27

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1032229

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/36859/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/74418

Scores

EPSS 0.0675

EPSS Percentile 91.1%

Classification

CWE

CWE-119

Status draft

Affected Products (3)

foxitsoftware/enterprise_reader < 7.1.3.320

foxitsoftware/foxit_reader < 7.1.3.320

foxitsoftware/phantompdf < 7.1.3.320

Timeline

Published May 01, 2015

Tracked Since Feb 18, 2026