Intrusion Prevention



This indicates an attack attempt to exploit a Heap based Buffer Overflow in multiple Foxit products.
The vulnerability is due to improper bound checking when the vulnerable application converts a PNG file to PDF. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application via a crafted file.

Affected Products

Foxit Software Enterprise Reader and prior
Foxit Software Foxit Reader and prior
Foxit Software PhantomPDF and prior


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor