CVE-2011-0332

Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom before 2.3.3.1112 allows remote attackers to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
VendorProductVersion
foxitsoftwarefoxit_reader
𝑥
≤ 4.3
foxitsoftwarefoxit_reader
2.0
foxitsoftwarefoxit_reader
2.2
foxitsoftwarefoxit_reader
2.3
foxitsoftwarefoxit_reader
3.0
foxitsoftwarefoxit_reader
3.1
foxitsoftwarefoxit_reader
3.1.1
foxitsoftwarefoxit_reader
3.1.3
foxitsoftwarefoxit_reader
3.1.4
foxitsoftwarefoxit_reader
3.2
foxitsoftwarefoxit_reader
3.2.1
foxitsoftwarefoxit_reader
3.3.1
foxitsoftwarefoxit_reader
4.0
foxitsoftwarefoxit_reader
4.1.1
foxitsoftwarefoxit_phantom
𝑥
≤ 2.3
foxitsoftwarefoxit_phantom
1.0.2
foxitsoftwarefoxit_phantom
2.0
foxitsoftwarefoxit_phantom
2.1
foxitsoftwarefoxit_phantom
2.1.1
foxitsoftwarefoxit_phantom
2.2
foxitsoftwarefoxit_phantom
2.2.1
foxitsoftwarefoxit_phantom
2.2.3
foxitsoftwarefoxit_phantom
2.2.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration