Shodan
Vulnerabilities
Vulnerable Software
Swftools:  >> Swftools  >> 0.9.2  Security Vulnerabilities
CVE-2023-26991
SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-04-04
CVE-2023-27249
swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-23
CVE-2022-46440
ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-24
CVE-2021-42202
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_DeleteFilter() located in swffilter.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02
CVE-2021-42203
An issue was discovered in swftools through 20201222. A heap-use-after-free exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.007
Published
2022-06-02
CVE-2021-42204
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.008
Published
2022-06-02
CVE-2021-42195
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function handleEditText() located in swfdump.c. It allows an attacker to cause code Execution.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-06-02
CVE-2021-42196
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function traits_parse() located in abc.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02
CVE-2021-42197
An issue was discovered in swftools through 20201222 through a memory leak in the swftools when swfdump is used. It allows an attacker to cause code execution.
CVSS Score
7.8
EPSS Score
0.005
Published
2022-06-02
CVE-2021-42198
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved