Lucene search
K

268 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-5331

Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before 11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux, Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380, and Adobe AIR SDK & Compiler before 3.9.0.1380 allow remote attackers to execute arbitrary code...

9.3CVSS8.1AI score0.72495EPSS
Exploits6References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:16 a.m.2 views

SUSE CVE-2015-5337

Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 does not properly restrict the availability of Flowplayer, which allows remote attackers to conduct cross-site scripting XSS attacks via a crafted .swf file...

6.1CVSS6AI score0.01077EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:15 a.m.5 views

SUSE CVE-2015-5571

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict the SWF file format, which allows remote...

4.3CVSS7.3AI score0.03336EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.4 views

SUSE CVE-2015-7645

Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote attackers to execute arbitrary code via a crafted SWF file, as exploited in the wild in October 2015...

7.8CVSS7.9AI score0.68396EPSS
Exploits0References7
Prion
Prion
added 2022/01/06 2:15 p.m.15 views

Design/Logic Flaw

In libming 0.4.8, the parseSWFDEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-service attacks via a crafted SWF file...

4.3CVSS6.2AI score0.01019EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/01/06 2:15 p.m.40 views

CVE-2021-44590

In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c. Remote attackers could launch denial of service attacks by submitting a crafted SWF file that exploits this vulnerability...

6.5CVSS6.6AI score0.0124EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/01/06 2:15 p.m.45 views

CVE-2021-44591

In libming 0.4.8, the parseSWFDEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-service attacks via a crafted SWF file...

6.5CVSS6.6AI score0.01019EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/09/20 12:0 a.m.4 views

swftools 缓冲区错误漏洞

SWFTools is a collection of utilities to work with Adobe Flash files SWF files. SWFTools suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause code execution...

7.8CVSS7.9AI score0.01095EPSS
Exploits1References1
OSV
OSV
added 2019/06/26 6:15 p.m.25 views

CVE-2019-12982

Ming aka libming 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted SWF file...

6.5CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2019/06/26 6:15 p.m.18 views

CVE-2019-12980

In Ming aka libming 0.4.8, there is an integer overflow caused by an out-of-range left shift in the SWFInputreadSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

6.5CVSS6.8AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/06/26 6:15 p.m.31 views

CVE-2019-12982

Ming aka libming 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted SWF file...

6.5CVSS6.8AI score0.01381EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/06/26 6:15 p.m.37 views

CVE-2019-12980

In Ming aka libming 0.4.8, there is an integer overflow caused by an out-of-range left shift in the SWFInputreadSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

6.5CVSS6.7AI score0.01417EPSS
Exploits0References2
Prion
Prion
added 2019/06/26 6:15 p.m.21 views

Integer overflow

In Ming aka libming 0.4.8, there is an integer overflow caused by an out-of-range left shift in the SWFInputreadSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

4.3CVSS6.3AI score0.01417EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/06/26 6:15 p.m.10 views

UBUNTU-CVE-2019-12980

In Ming aka libming 0.4.8, there is an integer overflow caused by an out-of-range left shift in the SWFInputreadSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

6.5CVSS6.7AI score0.01417EPSS
Exploits0References3
NVD
NVD
added 2019/02/07 6:29 p.m.21 views

CVE-2019-7581

The parseSWFACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a different vulnerability than CVE-2018-7876...

8.8CVSS6.8AI score0.02125EPSS
Exploits1References1
OSV
OSV
added 2019/02/07 6:29 p.m.31 views

UBUNTU-CVE-2019-7582

The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure...

8.8CVSS7.4AI score0.02206EPSS
Exploits1References3
OSV
OSV
added 2019/02/07 6:29 p.m.23 views

CVE-2019-7581

The parseSWFACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a different vulnerability than CVE-2018-7876...

8.8CVSS7AI score
Exploits0References1
Cvelist
Cvelist
added 2019/02/07 6:0 p.m.23 views

CVE-2019-7581

The parseSWFACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a different vulnerability than CVE-2018-7876...

7.4AI score0.02125EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2018/07/05 2:29 p.m.2 views

CVE-2018-13250

libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file...

6.5CVSS5.6AI score0.01456EPSS
Exploits1References2
Prion
Prion
added 2018/07/05 2:29 p.m.19 views

Null pointer dereference

libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file...

4.3CVSS6.2AI score0.01456EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder