CVE-2019-14213

Vulnerability

An issue exists in Foxit PhantomPDF prior to version 8.3.11 where the application crashes due to a repeated release of the signature dictionary during CSG_SignatureF and CPDF_Document destruction. This double-free condition occurs when the signature dictionary is freed multiple times during object cleanup, leading to memory corruption and a crash. The vulnerability affects all versions of Foxit PhantomPDF before 8.3.11 [1].

Exploitation

An attacker can exploit this vulnerability by crafting a malicious PDF document that includes a specially designed signature dictionary. When a user opens the PDF in an affected version of Foxit PhantomPDF and the document is closed or processed (triggering the destruction of CSG_SignatureF and CPDF_Document objects), the double-free is triggered. No authentication or special privileges are required; the victim only needs to open the file with the vulnerable software.

Impact

Successful exploitation results in a denial of service (DoS) condition, causing the application to crash. There is no indication of code execution or information disclosure in the available references. The crash may lead to loss of unsaved work and disrupt user productivity.

Mitigation

Foxit Software addressed this vulnerability in Foxit PhantomPDF version 8.3.11. Users should update to this version or later to mitigate the issue. No workarounds are documented in the available references [1].