Total
123 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-1000174 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
| In SWFTools, an address access exception was found in swfdump swf_GetBits(). | |||||
| CVE-2017-11097 | 1 Swftools | 1 Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
| When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c. | |||||
| CVE-2017-8401 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 6.5 MEDIUM |
| In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS. | |||||
| CVE-2017-10976 | 1 Swftools | 1 Swftools | 2025-04-20 | 5.0 MEDIUM | 7.5 HIGH |
| When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c. | |||||
| CVE-2017-9925 | 2 Microsoft, Swftools | 2 Windows, Swftools | 2025-04-20 | 6.8 MEDIUM | 8.8 HIGH |
| In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d." | |||||
| CVE-2017-1000186 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
| In SWFTools, a stack overflow was found in pdf2swf. | |||||
| CVE-2017-1000182 | 1 Swftools | 1 Swftools | 2025-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
| In SWFTools, a memory leak was found in wav2swf. | |||||
| CVE-2010-1516 | 1 Swftools | 1 Swftools | 2025-04-11 | 9.3 HIGH | N/A |
| Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c. | |||||
| CVE-2024-26337 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 4.3 MEDIUM |
| swftools v0.9.2 was discovered to contain a segmentation violation via the function s_font at swftools/src/swfc.c. | |||||
| CVE-2024-26339 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 9.1 CRITICAL |
| swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/src/swfc+0x48318a. | |||||
| CVE-2024-26333 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 5.5 MEDIUM |
| swftools v0.9.2 was discovered to contain a segmentation violation via the function free_lines at swftools/lib/modules/swfshape.c. | |||||
| CVE-2024-26334 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 6.2 MEDIUM |
| swftools v0.9.2 was discovered to contain a segmentation violation via the function compileSWFActionCode at swftools/lib/action/actioncompiler.c. | |||||
| CVE-2024-26335 | 1 Swftools | 1 Swftools | 2025-04-01 | N/A | 5.5 MEDIUM |
| swftools v0.9.2 was discovered to contain a segmentation violation via the function state_free at swftools/src/swfc-history.c. | |||||
| CVE-2022-46440 | 1 Swftools | 1 Swftools | 2025-03-12 | N/A | 5.5 MEDIUM |
| ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c. | |||||
| CVE-2023-27249 | 1 Swftools | 1 Swftools | 2025-02-25 | N/A | 5.5 MEDIUM |
| swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c. | |||||
| CVE-2023-26991 | 1 Swftools | 1 Swftools | 2025-02-12 | N/A | 7.8 HIGH |
| SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c. | |||||
| CVE-2023-29950 | 1 Swftools | 1 Swftools | 2025-01-31 | N/A | 5.5 MEDIUM |
| swfrender v0.9.2 was discovered to contain a heap buffer overflow in the function enumerateUsedIDs_fillstyle at modules/swftools.c | |||||
| CVE-2024-22957 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 5.5 MEDIUM |
| swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190. | |||||
| CVE-2024-22956 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 7.8 HIGH |
| swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838 | |||||
| CVE-2024-22955 | 1 Swftools | 1 Swftools | 2024-11-21 | N/A | 7.8 HIGH |
| swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576. | |||||