Vulnerabilities > Libming > Libming > 0.4.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-07 | CVE-2019-7582 | Allocation of Resources Without Limits or Throttling vulnerability in Libming The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure. | 6.8 |
| 2019-02-07 | CVE-2019-7581 | Allocation of Resources Without Limits or Throttling vulnerability in Libming The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a different vulnerability than CVE-2018-7876. | 6.8 |
| 2018-08-25 | CVE-2018-15871 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. | 4.3 |
| 2018-08-25 | CVE-2018-15870 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. | 4.3 |
| 2018-05-17 | CVE-2018-11226 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-05-17 | CVE-2018-11225 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-05-15 | CVE-2018-11100 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The decompileSETTARGET function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-05-15 | CVE-2018-11095 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The decompileJUMP function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-05-13 | CVE-2018-11017 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The newVar_N function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |
| 2018-04-01 | CVE-2018-9165 | NULL Pointer Dereference vulnerability in Libming The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to cause a denial of service via a crafted SWF file. | 4.3 |