Vulnerabilities > CVE-2018-8806 - Use After Free vulnerability in Libming 0.4.8

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

libming

CWE-416

NVD

Published: 2018-03-20

Updated: 2018-04-12

Summary

In libming 0.4.8, there is a use-after-free in the decompileArithmeticOp function of decompile.c. Remote attackers could use this vulnerability to cause a denial-of-service via a crafted swf file.

Vulnerable Configurations

Part	Description	Count
Application	Libming Libming Libming 0.4.8	1

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://github.com/libming/libming/issues/128