) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:foxitsoftware:foxit_reader:4.1:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2015-3632 |
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file. Published: May 01, 2015; 11:59:10 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2015-2790 |
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image. Published: March 30, 2015; 10:59:10 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2012-4337 |
Foxit Reader before 5.3 on Windows XP and Windows 7 allows remote attackers to execute arbitrary code via a PDF document with a crafted attachment that triggers calculation of a negative number during processing of cross references. Published: August 23, 2012; 11:55:00 AM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2011-3691 |
Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory. Published: September 27, 2011; 3:55:03 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2011-0332 |
Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom before 2.3.3.1112 allows remote attackers to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow. Published: February 25, 2011; 2:00:00 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |