CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-3740

Heap-based buffer overflow in the CreateFXPDFConvertor function in ConvertToPdf_x86.dll in Foxit Reader 7.3.4.311 allows remote attackers to execute arbitrary code via a large SamplesPerPixel value in a crafted TIFF image that is mishandled during PDF conversion. This is fixed in 8.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://0patch.blogspot.com/2016/07/0patching-foxit-readers-heap-buffer.html
https://www.foxitsoftware.com/support/security-bulletins.php
https://0patch.blogspot.com/2016/07/0patching-foxit-readers-heap-buffer.html
https://www.foxitsoftware.com/support/security-bulletins.php

Products affected by CVE-2016-3740

Foxitsoftware » Foxit Reader » Version: 7.3.4.311

cpe:2.3:a:foxitsoftware:foxit_reader:7.3.4.311

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3740

Products

Pricing

Contact Us