Vulnerabilities (CVE)

Filtered by vendor Swftools Subscribe
Total 118 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-16796 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 7.8 HIGH
In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application crash) or possibly have unspecified other impact via vectors involving an IDAT tag in a crafted PNG file.
CVE-2017-16794 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an erroneous png_load call that occurs because of incorrect integer data types in png2swf.
CVE-2017-16793 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 7.8 HIGH
The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly have unspecified other impact via a crafted file.
CVE-2017-16711 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) because of extractDefinitions in lib/readers/swf.c and fill_line_bitmap in lib/devices/render.c, as demonstrated by swfrender.
CVE-2017-11101 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_Relocate() function in lib/modules/swftools.c.
CVE-2017-11100 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.
CVE-2017-11099 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c.
CVE-2017-11098 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c.
CVE-2017-11097 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c.
CVE-2017-11096 1 Swftools 1 Swftools 2024-11-21 6.8 MEDIUM 8.8 HIGH
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c.
CVE-2017-10976 1 Swftools 1 Swftools 2024-11-21 5.0 MEDIUM 7.5 HIGH
When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.
CVE-2017-1000187 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 7.8 HIGH
In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF()
CVE-2017-1000186 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
In SWFTools, a stack overflow was found in pdf2swf.
CVE-2017-1000185 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
In SWFTools, a memcpy buffer overflow was found in gif2swf.
CVE-2017-1000182 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
In SWFTools, a memory leak was found in wav2swf.
CVE-2017-1000176 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
In SWFTools, a memcpy buffer overflow was found in swfc.
CVE-2017-1000174 1 Swftools 1 Swftools 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
In SWFTools, an address access exception was found in swfdump swf_GetBits().
CVE-2010-1516 1 Swftools 1 Swftools 2024-11-21 9.3 HIGH N/A
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.