Vulnerabilities > Swftools > High

DATE CVE VULNERABILITY TITLE RISK
2017-07-07 CVE-2017-11100 NULL Pointer Dereference vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.
network
low complexity
swftools CWE-476
8.8
8.8
2017-07-07 CVE-2017-11099 Improper Input Validation vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c.
network
low complexity
swftools CWE-20
8.8
8.8
2017-07-07 CVE-2017-11098 Improper Input Validation vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c.
network
low complexity
swftools CWE-20
8.8
8.8
2017-07-07 CVE-2017-11097 NULL Pointer Dereference vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c.
network
low complexity
swftools CWE-476
8.8
8.8
2017-07-07 CVE-2017-11096 NULL Pointer Dereference vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c.
network
low complexity
swftools CWE-476
8.8
8.8
2017-07-06 CVE-2017-10976 Out-of-bounds Read vulnerability in Swftools 0.9.2
When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.
network
low complexity
swftools CWE-125
7.5
7.5
2017-07-05 CVE-2017-9927 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe."
network
low complexity
swftools CWE-119
8.8
8.8
2017-07-05 CVE-2017-9926 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596."
network
low complexity
swftools CWE-119
8.8
8.8
2017-07-05 CVE-2017-9925 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
network
low complexity
swftools CWE-119
8.8
8.8
2017-07-05 CVE-2017-9924 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007
In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV starting at image00000000_00400000+0x000000000001b72a."
network
low complexity
swftools CWE-119
8.8
8.8