cvedb.io
CVE-2019-5005
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2019-01-03T23:29:00.337 · Last modified 2026-06-17T02:36:57.027

Summary

An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service (application crash) via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption.

Affected products

foxitsoftware — foxit_reader

Does this affect you?

Add your gear to cvedb and we'll alert you only when foxitsoftware ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.