Vulnerability Details CVE-2015-2790
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.542
EPSS Ranking 97.8%
CVSS Severity
CVSS v2 Score 4.3
References
- http://protekresearchlab.com/PRL-2015-02/
- http://protekresearchlab.com/prl-2015-01prl-foxit-products-gif-conversion-memory-corruption-vulnerabilities-lzwminimumcodesize/
- http://securitytracker.com/id/1031878
- http://www.exploit-db.com/exploits/36334
- http://www.exploit-db.com/exploits/36335
- http://www.foxitsoftware.com/support/security_bulletins.php#FRD-23
- http://www.foxitsoftware.com/support/security_bulletins.php#FRD-24
- http://www.osvdb.org/119302
- http://www.osvdb.org/119303
- http://www.securityfocus.com/bid/73430
- http://www.securitytracker.com/id/1031877
- http://protekresearchlab.com/PRL-2015-02/
- http://protekresearchlab.com/prl-2015-01prl-foxit-products-gif-conversion-memory-corruption-vulnerabilities-lzwminimumcodesize/
- http://securitytracker.com/id/1031878
- http://www.exploit-db.com/exploits/36334
- http://www.exploit-db.com/exploits/36335
- http://www.foxitsoftware.com/support/security_bulletins.php#FRD-23
- http://www.foxitsoftware.com/support/security_bulletins.php#FRD-24
- http://www.osvdb.org/119302
- http://www.osvdb.org/119303
- http://www.securityfocus.com/bid/73430
- http://www.securitytracker.com/id/1031877
Products affected by CVE-2015-2790
-
cpe:2.3:a:foxitsoftware:enterprise_reader:7.0.6.1126
-
cpe:2.3:a:foxitsoftware:foxit_reader:2.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:2.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:2.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.0.0111
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.0.0824
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.1.0901
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.2.1013
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.2.1030
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.4
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.1.4.1125
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.2.0.0303
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.2.1.0401
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.3.0.0430
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.3.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:3.3.1.0520
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.0.0.0619
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.1.0.0726
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.1.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.1.1.0805
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.2.0.0928
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.3.0.1110
-
cpe:2.3:a:foxitsoftware:foxit_reader:4.3.1.0218
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.0.1.0523
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.0.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.0.2.0718
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.1.0.1021
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.1.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.1.3.1201
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.1.4.0104
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.3.0.0423
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.3.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.3.1.0606
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4.2.0901
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4.3.0920
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4.5
-
cpe:2.3:a:foxitsoftware:foxit_reader:5.4.5.0114
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0.2.0413
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0.3
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0.3.0524
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0.5
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.0.5.0618
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.1.1031
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.2.1224
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.4
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.4.0217
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2.0.0429
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2.1.0618
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.3.916
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.6
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.6.1126
-
cpe:2.3:a:foxitsoftware:phantompdf:1.0.2
-
cpe:2.3:a:foxitsoftware:phantompdf:2.0
-
cpe:2.3:a:foxitsoftware:phantompdf:2.1
-
cpe:2.3:a:foxitsoftware:phantompdf:2.1.1
-
cpe:2.3:a:foxitsoftware:phantompdf:2.2
-
cpe:2.3:a:foxitsoftware:phantompdf:2.2.1
-
cpe:2.3:a:foxitsoftware:phantompdf:2.2.3
-
cpe:2.3:a:foxitsoftware:phantompdf:3.0.1
-
cpe:2.3:a:foxitsoftware:phantompdf:3.3
-
cpe:2.3:a:foxitsoftware:phantompdf:3.4
-
cpe:2.3:a:foxitsoftware:phantompdf:4.0
-
cpe:2.3:a:foxitsoftware:phantompdf:4.1
-
cpe:2.3:a:foxitsoftware:phantompdf:5.0.2
-
cpe:2.3:a:foxitsoftware:phantompdf:5.0.2.0721
-
cpe:2.3:a:foxitsoftware:phantompdf:5.0.3
-
cpe:2.3:a:foxitsoftware:phantompdf:5.0.3.0811
-
cpe:2.3:a:foxitsoftware:phantompdf:5.1
-
cpe:2.3:a:foxitsoftware:phantompdf:5.1.1.1214
-
cpe:2.3:a:foxitsoftware:phantompdf:5.1.2
-
cpe:2.3:a:foxitsoftware:phantompdf:5.1.2.0305
-
cpe:2.3:a:foxitsoftware:phantompdf:5.2
-
cpe:2.3:a:foxitsoftware:phantompdf:5.2.0.0502
-
cpe:2.3:a:foxitsoftware:phantompdf:5.2.1
-
cpe:2.3:a:foxitsoftware:phantompdf:5.2.1.0615
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4.0.0902
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4.2
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4.2.0918
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4.3
-
cpe:2.3:a:foxitsoftware:phantompdf:5.4.3.1106
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0.2.0413
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0.5
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0.5.0618
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0.7
-
cpe:2.3:a:foxitsoftware:phantompdf:6.0.7.0806
-
cpe:2.3:a:foxitsoftware:phantompdf:6.1
-
cpe:2.3:a:foxitsoftware:phantompdf:6.1.1.1025
-
cpe:2.3:a:foxitsoftware:phantompdf:6.1.2
-
cpe:2.3:a:foxitsoftware:phantompdf:6.1.2.1227
-
cpe:2.3:a:foxitsoftware:phantompdf:6.2
-
cpe:2.3:a:foxitsoftware:phantompdf:6.2.0.0429
-
cpe:2.3:a:foxitsoftware:phantompdf:6.2.1
-
cpe:2.3:a:foxitsoftware:phantompdf:6.2.1.0168
-
cpe:2.3:a:foxitsoftware:phantompdf:7.0
-
cpe:2.3:a:foxitsoftware:phantompdf:7.0.3.916
-
cpe:2.3:a:foxitsoftware:phantompdf:7.0.6
-
cpe:2.3:a:foxitsoftware:phantompdf:7.0.6.1126