CVE-2021-39598

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function callcode located in code.c. It allows an attacker to cause Denial of Service...

SWFTools null pointer dereference vulnerability

SWFTools is a suite of open source software tools for creating and manipulating SWF files. a null pointer dereference vulnerability exists in the callcode function in SWFTools code.c. An attacker could exploit this vulnerability to cause a denial of service...

CVE-2021-39598

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function callcode located in code.c. It allows an attacker to cause Denial of Service...

CVE-2021-39598

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function callcode located in code.c. It allows an attacker to cause Denial of Service...

CVE-2021-39598

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function callcode located in code.c. It allows an attacker to cause Denial of Service...

UBUNTU-CVE-2021-39598

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function callcode located in code.c. It allows an attacker to cause Denial of Service...

CVE-2021-39598

CVE-2021-39598 affects the open-source suite swftools (pre-2020-07-10 releases). A NULL pointer dereference in the function callcode() in code.c can be exploited to cause a Denial of Service. Public details in the provided documents consistently describe DoS as the impact. The CVSS data in the so...

CVE-2021-39598

Removed by vendor...

Swftools 代码问题漏洞

SWFTools is a suite of open source software tools for creating and manipulating SWF files. a null pointer dereference vulnerability exists in the callcode function in SWFTools code.c. An attacker could exploit this vulnerability to cause a denial of service...

Block 18 Logic Flaw Vulnerability

Block 18 18T is an ethereum-based virtual currency.18T has a security vulnerability in the 'approveAndCallcode' function in its smart contract implementation, which stems from the program's failure to validate the callcode.An attacker could use this vulnerability to steal assets transfer the...

Logic flaw vulnerability in Globalvillage ecosystem

Globalvillage ecosystem GVE is a virtual currency system based on blockchain technology.A security vulnerability exists in the 'approveAndCallcode' function in GVE's smart contract implementation, which stems from the program's failure to validate the callcode. The vulnerability can be exploited ...

Globalvillage ecosystem evilReflex has an unspecified vulnerability.

Globalvillage ecosystem GVE is a virtual currency system based on blockchain technology. A security vulnerability exists in the 'approveAndCallcode' function in GVE's smart contract implementation, which stems from the program's failure to validate the callcode.An attacker could use this...

CVE-2018-12702

The approveAndCallcode function of a smart contract implementation for Globalvillage ecosystem GVE, an Ethereum ERC20 token, allows attackers to steal assets e.g., transfer the contract's balances into their account because the callcode i.e., spender.callextraData is not verified, aka the...

CA eTrust Intrusion Detection CallCode ActiveX vulnerability

Added: 08/09/2007 CVE: CVE-2007-3302 BID: 25050 OSVDB: 37698 Background CA eTrust Intrusion Detection includes the CallCode Caller.dll ActiveX control. Problem The CallCode ActiveX control is incorrectly marked safe for scripting. This ActiveX control contains scriptable functions which, if a use...

CVE-2007-3302

The CallCode ActiveX control in caller.dll 3.0 before 20070713, and 3.0 SP1 before 3.0.5.81, in CA formerly Computer Associates eTrust Intrusion Detection allows remote attackers to load arbitrary DLLs on a client system, and execute code from these DLLs, via unspecified "scriptable functions."...

Code injection

The CallCode ActiveX control in caller.dll 3.0 before 20070713, and 3.0 SP1 before 3.0.5.81, in CA formerly Computer Associates eTrust Intrusion Detection allows remote attackers to load arbitrary DLLs on a client system, and execute code from these DLLs, via unspecified "scriptable functions."...

CVE-2007-3302

The CVE-2007-3302 issue affects CA eTrust Intrusion Detection’s CallCode ActiveX control (Caller.dll) and allows remote code execution by loading arbitrary DLLs via scriptable functions when the control is marked safe for scripting. Affected versions include Caller.dll 3.0 before 20070713 and 3.0...

CVE-2007-3302

The CallCode ActiveX control in caller.dll 3.0 before 20070713, and 3.0 SP1 before 3.0.5.81, in CA formerly Computer Associates eTrust Intrusion Detection allows remote attackers to load arbitrary DLLs on a client system, and execute code from these DLLs, via unspecified "scriptable functions."...

iDefense Security Advisory 07.24.07: Computer Associates eTrust Intrusion Detection CallCode ActiveX Control Code Execution Vulnerability

Computer Associates eTrust Intrusion Detection CallCode ActiveX Control Code Execution Vulnerability iDefense Security Advisory 07.24.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 24, 2007 I. BACKGROUND Computer Associates eTrust Intrusion Detection is a network intrusion manageme...

Computer Associates eTrust Intrusion Detection code execution

CallCode ActiveX allows access to unsafe functions...