Foxit Phantom < Multiple Vulnerabilities

High Nessus Plugin ID 49808


A PDF toolkit installed on the remote Windows host is affected by multiple vulnerabilities.


According to its version, the remote installation of Foxit Phantom on the Windows host is affected by multiple vulnerabilities :

- A buffer overflow vulnerability can be triggered when handling a specially crafted PDF document with an overly long title.

- An identity theft flaw exists relating to the way digital signatures are handled.


Upgrade to Foxit Phantom or later.

See Also

Plugin Details

Severity: High

ID: 49808

File Name: foxit_phantom_2_2_0_926.nasl

Version: $Revision: 1.7 $

Type: local

Agent: windows

Family: Windows

Published: 2010/10/08

Modified: 2016/04/18

Dependencies: 49807

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:foxitsoftware:phantom

Required KB Items: installed_sw/FoxitPhantomPDF

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/09/29

Vulnerability Publication Date: 2010/08/18

Exploitable With

Metasploit (Foxit PDF Reader v4.1.1 Title Stack Buffer Overflow)

Reference Information

BID: 43785

OSVDB: 68648

Secunia: 41673