Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
swftools swftools 0.9.2 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-16793
The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote malicious users to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly have unspecified other impact via a crafted file.
Swftools Swftools 0.9.2
5.5
CVSSv3
CVE-2017-16711
The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) because of extractDefinitions in lib/reader...
Swftools Swftools 0.9.2
5.5
CVSSv3
CVE-2022-46440
ttftool v0.9.2 exists to contain a segmentation violation via the readU16 function at ttf.c.
Swftools Swftools 0.9.2
7.8
CVSSv3
CVE-2023-26991
SWFTools v0.9.2 exists to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.
Swftools Swftools 0.9.2
5.5
CVSSv3
CVE-2023-27249
swfdump v0.9.2 exists to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.
Swftools Swftools 0.9.2
7.8
CVSSv3
CVE-2024-22911
A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.
Swftools Swftools 0.9.2
7.8
CVSSv3
CVE-2024-22912
A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an malicious user to cause code execution.
Swftools Swftools 0.9.2
7.8
CVSSv3
CVE-2024-22913
A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an malicious user to cause code execution.
Swftools Swftools 0.9.2
5.5
CVSSv3
CVE-2024-22914
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an malicious user to cause denial of service.
Swftools Swftools 0.9.2
7.8
CVSSv3
CVE-2024-22915
A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an malicious user to cause code execution.
Swftools Swftools 0.9.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »