Vulnerabilities > Libming
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-29 | CVE-2017-11731 | Out-of-bounds Read vulnerability in Libming Ming 0.4.8 An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-07-29 | CVE-2017-11730 | Out-of-bounds Read vulnerability in Libming Ming 0.4.8 A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-07-29 | CVE-2017-11729 | Out-of-bounds Read vulnerability in Libming Ming 0.4.8 A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-07-29 | CVE-2017-11728 | Out-of-bounds Read vulnerability in Libming Ming 0.4.8 A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-07-28 | CVE-2017-11705 | Missing Release of Resource after Effective Lifetime vulnerability in Libming Ming 0.4.8 A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 6.5 |
| 2017-07-28 | CVE-2017-11704 | Out-of-bounds Read vulnerability in Libming Ming 0.4.8 A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 6.5 |
| 2017-07-28 | CVE-2017-11703 | Missing Release of Resource after Effective Lifetime vulnerability in Libming Ming 0.4.8 A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 6.5 |
| 2017-06-28 | CVE-2017-9989 | NULL Pointer Dereference vulnerability in multiple products util/outputtxt.c in libming 0.4.8 mishandles memory allocation. | 6.5 |
| 2017-06-28 | CVE-2017-9988 | NULL Pointer Dereference vulnerability in multiple products The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. | 6.5 |
| 2017-05-31 | CVE-2017-8782 | Integer Overflow or Wraparound vulnerability in Libming 0.4.8 The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. | 6.5 |