EUVD-2008-1834

Malware in sbrugna...

EUVD-2008-3782

Malware in sbrugna...

SUSE CVE-2008-1834

swfdecloadobject.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file...

SUSE CVE-2008-3796

Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service application crash via a 1x1 JPEG image...

DEBIAN-CVE-2016-6881

The zlibrefill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file...

UBUNTU-CVE-2016-6881

The zlibrefill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file...

openSUSE Security Update : swfdec (swfdec-524)

The free Flash decoder engine 'swfdec' was updated to version 0.6.8 to fix lots of crashers which are likely security relevant and could be exploited to remotely execute code. CVE-2008-3796 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

FreeBSD Ports: swfdec

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: swfdec

The remote host is missing an update to the system as announced in the referenced advisory. VID 5ef12755-1c6c-11dd-851d-0016d325a0ed OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

CVE-2008-3796

Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service application crash via a 1x1 JPEG image...

Code injection

Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service application crash via a 1x1 JPEG image...

CVE-2008-3796

Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service application crash via a 1x1 JPEG image...

CVE-2008-3796

CVE-2008-3796 concerns the Flash decoder engine swfdec . The vulnerability affects swfdec 0.6 and older, with versions before 0.6.8 allowing remote attackers to crash the application (denial of service) by presenting a crafted 1x1 JPEG image. Public descriptions in multiple sources (NVD, SUSE/SUS...

CVE-2008-3796

Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service application crash via a 1x1 JPEG image...

FreeBSD : swfdec -- exposure of sensitive information (5ef12755-1c6c-11dd-851d-0016d325a0ed)

Secunia reports : A vulnerability has been reported in swfdec, which can be exploited by malicious people to disclose sensitive information. The vulnerability is caused due to swfdec not properly restricting untrusted sandboxes from reading local files, which can be exploited to disclose the...

CVE-2008-1834

swfdecloadobject.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file...

CVE-2008-1834

swfdecloadobject.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file...

Arbitrary file deletion

swfdecloadobject.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file...

CVE-2008-1834

Swfdec vulnerability CVE-2008-1834 affects Swfdec up to version before 0.6.4. The flaw is in swfdec_load_object.c, which does not properly restrict local file access from untrusted sandboxes, enabling a crafted Flash file to read arbitrary local files. Impact is described as partial confidentiali...

CVE-2008-1834

swfdecloadobject.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file...