The host is installed with Foxit Reader before 8.1.0.1013 or Foxit PhantomPDF before 8.1.0.1013 and is prone to an out-of-bound read vulnerability. A flaw is present in the application, which fails to properly handle a crafted BMP image embedded in the XFA stream in a PDF document. Successful exploitation allow remote attackers to execute arbitrary code.