Lucene search
+L

16 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-2735

Malware in sbrugna...

8.8CVSS8.6AI score0.01421EPSS
Exploits1References3
redhatcve
redhatcve
added 2025/05/23 4:50 a.m.9 views

CVE-2023-37644

SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in pngreadchunk in lib/png.c...

5.5CVSS6.6AI score0.0027EPSS
Exploits1
cvelist
cvelist
added 2024/01/11 12:0 a.m.29 views

CVE-2023-37644

SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in pngreadchunk in lib/png.c...

5.6AI score0.0027EPSS
Exploits1References1
prion
prion
added 2022/10/13 12:15 p.m.19 views

Heap overflow

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via pngload at /lib/png.c...

1.9CVSS5.6AI score0.00312EPSS
Exploits1References2Affected Software1
cve
cve
added 2022/10/13 12:0 a.m.56 views

CVE-2022-35080

SWFTools contains a heap-buffer overflow in the png_load function of /lib/png.c for commit 772e55a2 (CVE-2022-35080). Affected component is SWFTools; root cause is a heap-buffer overflow in png_load. CVSS indicates Local attack vector, no privileges required, user interaction required, with Avail...

5.5CVSS5.7AI score0.00312EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2022/10/13 12:0 a.m.31 views

CVE-2022-35080

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via pngload at /lib/png.c...

5.9AI score0.00312EPSS
Exploits1References2
nessus
nessus
added 2019/10/25 12:0 a.m.40 views

Amazon Linux 2 : mercurial (ALAS-2019-1328)

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function beuint32read located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service Segmentation fault or possibly have unspecified...

7.8CVSS5.8AI score0.01247EPSS
Exploits2References3
veracode
veracode
added 2019/08/08 12:7 a.m.35 views

Denial Of Service (DoS)

advancecomp is vulnerable to denial of service DoS. The vulnerability exists in function advpngunfilter8 in lib/png.c...

7.8CVSS2.8AI score0.01247EPSS
Exploits1References8Affected Software1
cve
cve
added 2017/11/12 5:0 a.m.54 views

CVE-2017-16794

SWFTools 0.9.2 is affected by CVE-2017-16794 due to improper validation in png_load (lib/png.c). The code fails to correctly validate the multiplication of width and bits-per-pixel values, enabling a crafted file to cause a heap-based buffer over-read and application crash. The root cause is desc...

5.5CVSS5.5AI score0.01021EPSS
Exploits0References1Affected Software1
debiancve
debiancve
added 2017/07/07 6:0 p.m.38 views

CVE-2017-11098

Removed by vendor...

8.8CVSS8.8AI score0.01421EPSS
Exploits1
prion
prion
added 2017/05/01 7:59 p.m.10 views

Design/Logic Flaw

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution...

6.8CVSS8.9AI score0.02101EPSS
Exploits1References1Affected Software1
cve
cve
added 2017/05/01 7:0 p.m.59 views

CVE-2017-8400

In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in lib/png.c:755 within png_load(), triggered by a malformed PNG handled by png2swf. The issue could be exploited to cause DoS and, per the CVE description, may lead to arbitrary code execution. Public advisories (Mageia MGASA-2017-...

8.8CVSS8.9AI score0.02101EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2017/05/01 7:0 p.m.32 views

CVE-2017-8401

In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function pngload in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS...

7.4AI score0.01117EPSS
Exploits1References1
debiancve
debiancve
added 2017/05/01 7:0 p.m.33 views

CVE-2017-8400

Removed by vendor...

8.8CVSS8.7AI score0.02101EPSS
Exploits1
openvas
openvas
added 2010/08/19 12:0 a.m.21 views

SWFTools Multiple Integer Overflow Vulnerabilities

This host is installed with SWFTools and is prone to multiple integer overflow vulnerabilities. OpenVAS Vulnerability Test $Id: gbswftoolsmultintoverflowvulnlin.nasl 6539 2017-07-05 12:02:14Z cfischer $ SWFTools Multiple Integer Overflow Vulnerabilities Authors: Madhuri D Copyright: Copyright C...

9.3CVSS1AI score0.03472EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2010/08/17 10:0 p.m.20 views

CVE-2010-1516

Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via 1 a crafted PNG file, related to the getPNG function in lib/png.c; or 2 a crafted JPEG file, related to the jpegload function in lib/jpeg.c...

9.3CVSS6.1AI score0.03472EPSS
Exploits0References1
Rows per page
Query Builder