High severity7.8NVD Advisory· Published Apr 22, 2016· Updated Jun 17, 2026
CVE-2016-4064
CVE-2016-4064
Description
Use-after-free vulnerability in the XFA forms handling functionality in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted remerge call.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:foxitsoftware:phantompdf:*:*:*:*:*:windows:*:*+ 1 more
- cpe:2.3:a:foxitsoftware:phantompdf:*:*:*:*:*:windows:*:*range: <=7.3.0.118
- (no CPE)range: <7.3.4
- Range: <7.3.4
Patches
Vulnerability mechanics
References
3- www.zerodayinitiative.com/advisories/ZDI-16-215nvdThird Party AdvisoryVDB Entry
- www.foxitsoftware.com/support/security-bulletins.phpnvdVendor Advisory
- www.securityfocus.com/bid/85379nvd
News mentions
0No linked articles in our index yet.