Shodan
Vulnerabilities
Vulnerable Software
Swftools:  >> Swftools  >> 0.2.3  Security Vulnerabilities
CVE-2025-6271
A vulnerability, which was classified as problematic, was found in swftools up to 0.9.2. This affects the function wav_convert2mono in the library lib/wav.c of the component wav2swf. The manipulation leads to out-of-bounds read. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
CVSS Score
3.3
EPSS Score
0.0
Published
2025-06-19
CVE-2021-42202
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_DeleteFilter() located in swffilter.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02
CVE-2021-42203
An issue was discovered in swftools through 20201222. A heap-use-after-free exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.007
Published
2022-06-02
CVE-2021-42204
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.008
Published
2022-06-02
CVE-2021-42195
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function handleEditText() located in swfdump.c. It allows an attacker to cause code Execution.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-06-02
CVE-2021-42196
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function traits_parse() located in abc.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02
CVE-2021-42197
An issue was discovered in swftools through 20201222 through a memory leak in the swftools when swfdump is used. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.005
Published
2022-06-02
CVE-2021-42198
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02
CVE-2021-42199
An issue was discovered in swftools through 20201222. A heap buffer overflow exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.009
Published
2022-06-02
CVE-2021-42200
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function main() located in swfdump.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved