Ming Security Vulnerabilities and Issues — Ming CVE List

Lucene search

LibmingMing

10 matches found

CVE•added 2017/07/29 5:29 a.m.•66 views

CVE-2017-11730

A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.2AI score0.00205EPSS

CVE•added 2017/07/29 5:29 a.m.•62 views

CVE-2017-11734

A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.2AI score0.0019EPSS

CVE•added 2017/07/29 5:29 a.m.•57 views

CVE-2017-11733

A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.1AI score0.00318EPSS

CVE•added 2017/07/29 5:29 a.m.•56 views

CVE-2017-11731

An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.1AI score0.00208EPSS

CVE•added 2017/07/29 5:29 a.m.•55 views

CVE-2017-11728

A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.2AI score0.00208EPSS

CVE•added 2017/07/29 5:29 a.m.•52 views

CVE-2017-11729

A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.2AI score0.00205EPSS

CVE•added 2017/07/29 5:29 a.m.•52 views

CVE-2017-11732

A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

5.5CVSS6.4AI score0.00215EPSS

CVE•added 2017/07/28 5:29 a.m.•46 views

CVE-2017-11704

A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

6.5CVSS6.8AI score0.00284EPSS

CVE•added 2017/07/28 5:29 a.m.•44 views

CVE-2017-11703

A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

6.5CVSS6.1AI score0.00308EPSS

CVE•added 2017/07/28 5:29 a.m.•40 views

CVE-2017-11705

A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

6.5CVSS6.1AI score0.00308EPSS