SWFTools commit 772e55a was discovered to contain a heap-buffer overflow via the function readU8 at /lib/ttf.c.
9.8CVSS
9.6AI Score
0.002EPSS
SWFTools commit 772e55a was discovered to contain a heap-use-after-free via the function grow_unicode at /lib/ttf.c.
9.8CVSS
9.4AI Score
0.003EPSS
ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.
5.5CVSS
5.5AI Score
0.001EPSS
SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.
7.8CVSS
7.6AI Score
0.001EPSS
swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.
5.5CVSS
5.8AI Score
0.001EPSS
swfrender v0.9.2 was discovered to contain a heap buffer overflow in the function enumerateUsedIDs_fillstyle at modules/swftools.c
5.5CVSS
5.8AI Score
0.0004EPSS
SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.
5.5CVSS
5.6AI Score
0.0004EPSS
swftools 0.9.2 was discovered to contain a Stack Buffer Underflow via the function dict_foreach_keyvalue at swftools/lib/q.c.
7.8CVSS
7.6AI Score
0.001EPSS
A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.
7.8CVSS
7.5AI Score
0.001EPSS
A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.
7.8CVSS
7.7AI Score
0.001EPSS
A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an attacker to cause code execution.
7.8CVSS
7.7AI Score
0.001EPSS
A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.
5.5CVSS
5.4AI Score
0.0004EPSS
A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.
7.8CVSS
7.7AI Score
0.001EPSS
swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587.
7.8CVSS
7.6AI Score
0.001EPSS
swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
7.8CVSS
7.6AI Score
0.001EPSS
swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576.
7.8CVSS
7.6AI Score
0.001EPSS
swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838
7.8CVSS
7.6AI Score
0.001EPSS
swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190.
5.5CVSS
5.5AI Score
0.0004EPSS