CVE-2015-2790

Name of the Vulnerable Software and Affected Versions Foxit Reader, Enterprise Reader, and PhantomPDF versions prior to 7.1

Description The issue is caused by a memory handling error, allowing remote attackers to cause a denial of service (memory corruption and crash) via a crafted Ubyte Size in a DataSubBlock structure or LZWMinimumCodeSize in a GIF image.

Recommendations For Foxit Reader, Enterprise Reader, and PhantomPDF versions prior to 7.1, update to version 7.1 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted Ubyte Size in DataSubBlock structures or LZWMinimumCodeSize in GIF images to minimize the risk of exploitation.