Filtered by vendor Swftools
Subscriptions
Filtered by product Swftools
Subscriptions
Total
119 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2017-1000182 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
In SWFTools, a memory leak was found in wav2swf. | ||||
CVE-2017-16793 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly have unspecified other impact via a crafted file. | ||||
CVE-2017-1000185 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
In SWFTools, a memcpy buffer overflow was found in gif2swf. | ||||
CVE-2017-1000176 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
In SWFTools, a memcpy buffer overflow was found in swfc. | ||||
CVE-2017-11100 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c. | ||||
CVE-2017-11099 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c. | ||||
CVE-2017-8401 | 1 Swftools | 1 Swftools | 2024-09-17 | N/A |
In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS. | ||||
CVE-2017-11097 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c. | ||||
CVE-2017-16794 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an erroneous png_load call that occurs because of incorrect integer data types in png2swf. | ||||
CVE-2017-8400 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function png_load() in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution. | ||||
CVE-2017-1000187 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF() | ||||
CVE-2017-1000174 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
In SWFTools, an address access exception was found in swfdump swf_GetBits(). | ||||
CVE-2017-11101 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_Relocate() function in lib/modules/swftools.c. | ||||
CVE-2017-1000186 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
In SWFTools, a stack overflow was found in pdf2swf. | ||||
CVE-2017-11096 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c. | ||||
CVE-2017-10976 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c. | ||||
CVE-2017-11098 | 1 Swftools | 1 Swftools | 2024-09-16 | N/A |
When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c. | ||||
CVE-2024-22914 | 1 Swftools | 1 Swftools | 2024-09-12 | 5.5 Medium |
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service. | ||||
CVE-2024-22920 | 1 Swftools | 1 Swftools | 2024-09-11 | 7.8 High |
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c. | ||||
CVE-2010-1516 | 1 Swftools | 1 Swftools | 2024-08-07 | N/A |
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c. |