CVE-2015-3632

Name: CVE-2015-3632
Creator: NVD / NIST
Published: 2015-05-01T15:59:10.07+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 6.08%

Last modified Jun 17, 2026

CVE-2015-3632 is a vulnerability of currently unknown severity. Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.. EPSS estimates a 6.08% chance of exploitation in the next 30 days.

Description

Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.

Metrics

EPSS Probability

6.08%

92.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Foxitsoftware	Enterprise Reader	<= 7.1.3.320
Foxitsoftware	Foxit Reader	<= 7.1.3.320
Foxitsoftware	Phantompdf	<= 7.1.3.320

References

http://packetstormsecurity.com/files/131685/Foxit-Reader-7.1.3.320-Memory-Corruption.htmlExploit, Third Party Advisory, VDB Entry
http://protekresearchlab.com/PRL-2015-05/Exploit
http://www.foxitsoftware.com/support/security_bulletins.php#FRD-27Vendor Advisory
http://www.securityfocus.com/bid/74418
http://www.securitytracker.com/id/1032229Third Party Advisory, VDB Entry
https://www.exploit-db.com/exploits/36859/Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/131685/Foxit-Reader-7.1.3.320-Memory-Corruption.htmlExploit, Third Party Advisory, VDB Entry
http://protekresearchlab.com/PRL-2015-05/Exploit
http://www.foxitsoftware.com/support/security_bulletins.php#FRD-27Vendor Advisory
http://www.securityfocus.com/bid/74418
http://www.securitytracker.com/id/1032229Third Party Advisory, VDB Entry
https://www.exploit-db.com/exploits/36859/Exploit, Third Party Advisory, VDB Entry

Timeline

Published: May 1, 2015
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2015-3632?

Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.

How severe is CVE-2015-3632?

Severity scoring for CVE-2015-3632 is pending analysis. The EPSS model estimates a 6.08% probability of exploitation in the next 30 days.

How do I fix CVE-2015-3632?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-3632?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST