Vulnerabilities > Libming > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-28 | CVE-2017-11703 | Missing Release of Resource after Effective Lifetime vulnerability in Libming Ming 0.4.8 A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | 4.3 |
| 2017-06-28 | CVE-2017-9989 | NULL Pointer Dereference vulnerability in multiple products util/outputtxt.c in libming 0.4.8 mishandles memory allocation. | 4.3 |
| 2017-06-28 | CVE-2017-9988 | NULL Pointer Dereference vulnerability in multiple products The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. | 4.3 |
| 2017-05-31 | CVE-2017-8782 | Integer Overflow or Wraparound vulnerability in Libming 0.4.8 The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. | 4.3 |
| 2017-04-07 | CVE-2017-7578 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming 0.4.7 Multiple heap-based buffer overflows in parser.c in libming 0.4.7 allow remote attackers to cause a denial of service (listswf application crash) or possibly have unspecified other impact via a crafted SWF file. | 6.8 |
| 2017-03-23 | CVE-2016-9266 | Numeric Errors vulnerability in Libming 0.4.7 listmp3.c in libming 0.4.7 allows remote attackers to unspecified impact via a crafted mp3 file, which triggers an invalid left shift. | 4.3 |
| 2017-03-23 | CVE-2016-9265 | Divide By Zero vulnerability in Libming 0.4.7 The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file. | 4.3 |
| 2017-03-23 | CVE-2016-9264 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming 0.4.7 Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. | 4.3 |
| 2017-02-17 | CVE-2016-9831 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. | 6.8 |
| 2017-02-17 | CVE-2016-9829 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. | 6.8 |