Total
107 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-66877 | 1 Libming | 1 Libming | 2026-01-15 | N/A | 7.5 HIGH |
|
Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.
|
|||||
| CVE-2025-66869 | 1 Libming | 1 Libming | 2026-01-15 | N/A | 7.5 HIGH |
|
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.
|
|||||
| CVE-2025-26304 | 1 Libming | 1 Libming | 2025-04-22 | N/A | 8.2 HIGH |
|
A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8.
|
|||||
| CVE-2025-26305 | 1 Libming | 1 Libming | 2025-04-22 | N/A | 8.2 HIGH |
|
A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2016-9266 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
listmp3.c in libming 0.4.7 allows remote attackers to unspecified impact via a crafted mp3 file, which triggers an invalid left shift.
|
|||||
| CVE-2017-7578 | 1 Libming | 1 Libming | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
Multiple heap-based buffer overflows in parser.c in libming 0.4.7 allow remote attackers to cause a denial of service (listswf application crash) or possibly have unspecified other impact via a crafted SWF file. NOTE: this issue exists because of an incomplete fix for CVE-2016-9831.
|
|||||
| CVE-2016-9828 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file.
|
|||||
| CVE-2017-8782 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error.
|
|||||
| CVE-2017-16883 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
The outputSWF_TEXT_RECORD function in util/outputscript.c in libming <= 0.4.8 is vulnerable to a NULL pointer dereference, which may allow attackers to cause a denial of service via a crafted swf file.
|
|||||
| CVE-2016-9265 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
|
|||||
| CVE-2017-16898 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The printMP3Headers function in util/listmp3.c in libming v0.4.8 or earlier is vulnerable to a global buffer overflow, which may allow attackers to cause a denial of service via a crafted file, a different vulnerability than CVE-2016-9264.
|
|||||
| CVE-2016-9829 | 1 Libming | 1 Libming | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file.
|
|||||
| CVE-2016-9827 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file.
|
|||||
| CVE-2016-9831 | 1 Libming | 1 Libming | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file.
|
|||||
| CVE-2017-9988 | 2 Debian, Libming | 2 Debian Linux, Libming | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack against parser.c.
|
|||||
| CVE-2017-9989 | 2 Debian, Libming | 2 Debian Linux, Libming | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
|
util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.
|
|||||
| CVE-2016-9264 | 1 Libming | 1 Libming | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.
|
|||||
| CVE-2025-26306 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file.
|
|||||
| CVE-2025-26307 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2025-26308 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2025-26309 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2025-26310 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file.
|
|||||
| CVE-2025-26311 | 1 Libming | 1 Libming | 2025-04-17 | N/A | 6.5 MEDIUM |
|
Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2024-24148 | 1 Libming | 1 Libming | 2025-04-16 | N/A | 7.5 HIGH |
|
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
|
|||||
| CVE-2024-25770 | 1 Libming | 1 Libming | 2025-04-16 | N/A | 4.3 MEDIUM |
|
libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c.
|
|||||
| CVE-2025-29487 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 7.5 HIGH |
|
An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.
|
|||||
| CVE-2025-29483 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function.
|
|||||
| CVE-2025-29484 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 7.5 HIGH |
|
An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.
|
|||||
| CVE-2025-29485 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
|
|||||
| CVE-2025-29486 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function.
|
|||||
| CVE-2025-29488 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function.
|
|||||
| CVE-2025-29489 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function.
|
|||||
| CVE-2025-29490 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
|
|||||
| CVE-2025-29491 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file.
|
|||||
| CVE-2025-29492 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function.
|
|||||
| CVE-2025-29493 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
|
|||||
| CVE-2025-29496 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
|
|||||
| CVE-2025-29494 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
|
|||||
| CVE-2025-29497 | 1 Libming | 1 Libming | 2025-04-01 | N/A | 6.5 MEDIUM |
|
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function.
|
|||||
| CVE-2024-24150 | 1 Libming | 1 Libming | 2025-03-27 | N/A | 6.5 MEDIUM |
|
A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
|
|||||