Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SwftoolsSwftools

126 matches found

CVE
CVEadded 2021/09/20 4:15 p.m.34 views

CVE-2021-39561

An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function Gfx::opSetFillColorN() located in Gfx.cc. It allows an attacker to cause code Execution.

7.8CVSS7.5AI score0.00451EPSS
CVE
CVEadded 2022/09/21 12:15 a.m.34 views

CVE-2022-35086

SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S.

5.5CVSS5.5AI score0.00028EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.34 views

CVE-2022-35096

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via draw_stroke at /gfxpoly/stroke.c.

5.5CVSS5.7AI score0.0006EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.34 views

CVE-2022-35098

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via GfxICCBasedColorSpace::getDefaultColor(GfxColor*) at /xpdf/GfxState.cc.

5.5CVSS5.7AI score0.0006EPSS
CVE
CVEadded 2022/09/20 8:15 p.m.34 views

CVE-2022-40008

SWFTools commit 772e55a was discovered to contain a heap-buffer overflow via the function readU8 at /lib/ttf.c.

9.8CVSS9.6AI score0.00436EPSS
CVE
CVEadded 2017/05/10 2:29 p.m.33 views

CVE-2017-7698

A Use After Free in the pdf2swf part of swftools 0.9.2 and earlier allows remote attackers to execute arbitrary code via a malformed PDF document, possibly a consequence of an error in Gfx.cc in Xpdf 3.02.

7.8CVSS8AI score0.00611EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.33 views

CVE-2021-39577

An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function main() located in swfdump.c. It allows an attacker to cause code Execution.

7.8CVSS7.5AI score0.00451EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.33 views

CVE-2021-39585

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function traits_dump() located in abc.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.33 views

CVE-2022-35095

SWFTools commit 772e55a2 was discovered to contain a segmentation violation via InfoOutputDev::type3D1 at /pdf/InfoOutputDev.cc.

5.5CVSS5.5AI score0.00048EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.32 views

CVE-2021-39587

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function swf_DumpABC() located in abc.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.32 views

CVE-2021-39594

Other An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function updateusage() located in swftext.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00151EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.32 views

CVE-2022-35097

SWFTools commit 772e55a2 was discovered to contain a segmentation violation via FoFiTrueType::writeTTF at /xpdf/FoFiTrueType.cc.

5.5CVSS5.5AI score0.00048EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.31 views

CVE-2021-39591

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function swf_GetShapeBoundingBox() located in swfshape.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00151EPSS
CVE
CVEadded 2023/04/04 3:15 p.m.31 views

CVE-2023-26991

SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.

7.8CVSS7.6AI score0.00033EPSS
CVE
CVEadded 2024/01/19 3:15 p.m.31 views

CVE-2024-22920

swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.

7.8CVSS7.6AI score0.0007EPSS
CVE
CVEadded 2017/07/05 8:29 p.m.30 views

CVE-2017-9926

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596."

8.8CVSS9AI score0.00513EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.30 views

CVE-2021-39588

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function swf_ReadABC() located in abc.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.30 views

CVE-2021-39589

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function parse_metadata() located in abc.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2024/01/11 8:15 a.m.30 views

CVE-2023-37644

SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.

5.5CVSS5.6AI score0.00094EPSS
CVE
CVEadded 2024/01/19 6:15 p.m.30 views

CVE-2024-22912

A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.

7.8CVSS7.7AI score0.00068EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.29 views

CVE-2021-39579

An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function string_hash() located in q.c. It allows an attacker to cause code Execution.

7.8CVSS7.5AI score0.00451EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.28 views

CVE-2021-39597

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function code_dump2() located in code.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.28 views

CVE-2022-35093

SWFTools commit 772e55a2 was discovered to contain a global buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc.

5.5CVSS5.8AI score0.00134EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.27 views

CVE-2021-39595

An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfx_alloc() located in mem.c. It allows an attacker to cause code Execution.

7.8CVSS7.5AI score0.00451EPSS
CVE
CVEadded 2021/09/20 4:15 p.m.26 views

CVE-2021-39592

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function pool_lookup_uint() located in pool.c. It allows an attacker to cause Denial of Service.

5.5CVSS5.3AI score0.00149EPSS
CVE
CVEadded 2025/06/19 6:15 p.m.6 views

CVE-2025-6271

A vulnerability, which was classified as problematic, was found in swftools up to 0.9.2. This affects the function wav_convert2mono in the library lib/wav.c of the component wav2swf. The manipulation leads to out-of-bounds read. The attack needs to be approached locally. The exploit has been disclo...

4.8CVSS4AI score0.00032EPSS
Total number of security vulnerabilities126