CVE-2019-6984: Use After Free
First published: Mon Jan 28 2019(Updated: )
An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter a Use-After-Free or Type Confusion and crash during handling of certain PDF files that embed specifically crafted 3D content, due to the use of a wild pointer.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Foxitsoftware 3d | <9.4.0.16807 | |
| Foxitsoftware 3d | <9.4.0.16807 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Foxit 3D Plugin Beta issue?
The vulnerability ID for this Foxit 3D Plugin Beta issue is CVE-2019-6984.
What is the severity rating for CVE-2019-6984?
The severity rating for CVE-2019-6984 is medium with a CVSS score of 6.5.
What is the affected software for CVE-2019-6984?
The affected software for CVE-2019-6984 is Foxit Reader and PhantomPDF versions before 9.4.0.16807.
What is the description of CVE-2019-6984?
CVE-2019-6984 is a vulnerability in Foxit 3D Plugin Beta that could result in a Use-After-Free or Type Confusion and crash when handling certain PDF files with crafted 3D content.
How can I fix CVE-2019-6984?
To fix CVE-2019-6984, update Foxit Reader and PhantomPDF to version 9.4.0.16807 or above.
- collector/nvd-index
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/foxitsoftware
- canonical/foxitsoftware 3d
- vendor/microsoft
- canonical/microsoft windows