Total
126 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-8400 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function png_load() in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution.
|
|||||
| CVE-2017-11099 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c.
|
|||||
| CVE-2017-11097 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c.
|
|||||
| CVE-2017-1000182 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
In SWFTools, a memory leak was found in wav2swf.
|
|||||
| CVE-2017-9927 | 2 Microsoft, Swftools | 2 Windows, Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe."
|
|||||
| CVE-2017-9925 | 2 Microsoft, Swftools | 2 Windows, Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
|
|||||
| CVE-2017-11096 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c.
|
|||||
| CVE-2017-16797 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and application crash) or possibly have unspecified other impact via a crafted PNG file.
|
|||||
| CVE-2017-1000176 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
In SWFTools, a memcpy buffer overflow was found in swfc.
|
|||||
| CVE-2017-11100 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.
|
|||||
| CVE-2017-8420 | 2 Microsoft, Swftools | 2 Windows, Swftools | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
SWFTools 2013-04-09-1007 on Windows has a "Data from Faulting Address controls Branch Selection starting at image00000000_00400000+0x0000000000003e71" issue. This issue can be triggered by a malformed TTF file that is mishandled by font2swf. Attackers could exploit this issue for DoS (Access Violation).
|
|||||
| CVE-2017-16794 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an erroneous png_load call that occurs because of incorrect integer data types in png2swf.
|
|||||
| CVE-2017-16868 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
In SWFTools 0.9.2, the wav_convert2mono function in lib/wav.c does not properly restrict a multiplication within a malloc call, which allows remote attackers to cause a denial of service (integer overflow and NULL pointer dereference) via a crafted WAV file.
|
|||||
| CVE-2017-1000187 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 7.8 HIGH |
|
In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF()
|
|||||
| CVE-2017-1000186 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
In SWFTools, a stack overflow was found in pdf2swf.
|
|||||
| CVE-2017-8401 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS.
|
|||||
| CVE-2017-11101 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_Relocate() function in lib/modules/swftools.c.
|
|||||
| CVE-2017-16796 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application crash) or possibly have unspecified other impact via vectors involving an IDAT tag in a crafted PNG file.
|
|||||
| CVE-2017-11098 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
|
When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c.
|
|||||
| CVE-2010-1516 | 1 Swftools | 1 Swftools | 2025-04-11 | 9.3 HIGH | N/A |
|
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.
|
|||||
| CVE-2024-26337 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 4.3 MEDIUM |
|
swftools v0.9.2 was discovered to contain a segmentation violation via the function s_font at swftools/src/swfc.c.
|
|||||
| CVE-2024-26339 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 9.1 CRITICAL |
|
swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/src/swfc+0x48318a.
|
|||||
| CVE-2024-26333 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 5.5 MEDIUM |
|
swftools v0.9.2 was discovered to contain a segmentation violation via the function free_lines at swftools/lib/modules/swfshape.c.
|
|||||
| CVE-2024-26334 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 6.2 MEDIUM |
|
swftools v0.9.2 was discovered to contain a segmentation violation via the function compileSWFActionCode at swftools/lib/action/actioncompiler.c.
|
|||||
| CVE-2024-26335 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 5.5 MEDIUM |
|
swftools v0.9.2 was discovered to contain a segmentation violation via the function state_free at swftools/src/swfc-history.c.
|
|||||
| CVE-2022-46440 | 1 Swftools | 1 Swftools | 2025-03-12 | N/A | 5.5 MEDIUM |
|
ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.
|
|||||
| CVE-2023-27249 | 1 Swftools | 1 Swftools | 2025-02-25 | N/A | 5.5 MEDIUM |
|
swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.
|
|||||
| CVE-2023-26991 | 1 Swftools | 1 Swftools | 2025-02-12 | N/A | 7.8 HIGH |
|
SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.
|
|||||
| CVE-2023-29950 | 1 Swftools | 1 Swftools | 2025-01-31 | N/A | 5.5 MEDIUM |
|
swfrender v0.9.2 was discovered to contain a heap buffer overflow in the function enumerateUsedIDs_fillstyle at modules/swftools.c
|
|||||
| CVE-2024-22920 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 7.8 HIGH |
|
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
|
|||||
| CVE-2024-22914 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.
|
|||||
| CVE-2022-35114 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via extractFrame at /readers/swf.c.
|
|||||
| CVE-2022-35113 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via swf_DefineLosslessBitsTagToImage at /modules/swfbits.c.
|
|||||
| CVE-2022-35111 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a stack overflow via __sanitizer::StackDepotNode::hash(__sanitizer::StackTrace const&) at /sanitizer_common/sanitizer_stackdepot.cpp.
|
|||||
| CVE-2022-35110 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a memory leak via /lib/mem.c.
|
|||||
| CVE-2022-35109 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via draw_stroke at /gfxpoly/stroke.c.
|
|||||
| CVE-2022-35108 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via DCTStream::getChar() at /xpdf/Stream.cc.
|
|||||
| CVE-2022-35107 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a stack overflow via vfprintf at /stdio-common/vfprintf.c.
|
|||||
| CVE-2022-35106 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via FoFiTrueType::computeTableChecksum(unsigned char*, int) at /xpdf/FoFiTrueType.cc.
|
|||||
| CVE-2022-35105 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via /bin/png2swf+0x552cea.
|
|||||