CVE-2019-5005
Description
An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service (application crash) via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption.
- CVSS Version 3.0
- CVSS Version 2.0
nvd
CVE ID: CVE-2019-5005
Base Score: 5.5
Base Severity: MEDIUM
Vector String:CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvd
CVE ID: CVE-2019-5005
Base Score: 4.3
Base Severity: MEDIUM
Vector String:AV:N/AC:M/Au:N/C:N/I:N/A:P
Refrence: NVD