Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:34 a.m.5 views

CVE-2017-8400

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution...

8.8CVSS7.3AI score0.02101EPSS
Exploits1References1
Mageia
Mageia
added 2017/08/07 10:16 p.m.30 views

Updated swftools package fixes security vulnerability

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution CVE-2017-8400...

8.8CVSS2.7AI score0.02101EPSS
Exploits1References2
Debian
Debian
added 2017/06/20 8:25 p.m.17 views

[SECURITY] [DLA 995-1] swftools security update

Package : swftools Version : 0.9.2+ds1-3+deb7u1 CVE ID : CVE-2017-8400 CVE-2017-8401 CVE-2017-8400 In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attacker...

8.8CVSS8.1AI score0.02101EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.37 views

openSUSE Security Update : swftools (openSUSE-2017-564)

This update for swftools fixes the following issues : - CVE-2017-8400: out-of-bound write of heap data issue bsc1037050 - CVE-2017-8401: out-of-bound read of heap data issue bsc1037051 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

8.8CVSS7.1AI score0.02101EPSS
Exploits2References4
CVE
CVE
added 2017/05/01 7:0 p.m.59 views

CVE-2017-8400

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in lib/png.c:755 within png_load(), triggered by a malformed PNG handled by png2swf. The issue could be exploited to cause DoS and, per the CVE description, may lead to arbitrary code execution. Public advisories (Mageia MGASA-2017-...

8.8CVSS8.9AI score0.02101EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder