Swftools: >> Swftools Security Vulnerabilities
swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-01-19
A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-01-19
A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
swftools 0.9.2 was discovered to contain a Stack Buffer Underflow via the function dict_foreach_keyvalue at swftools/lib/q.c.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-01-19
SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-01-11