Vulnerabilities > Swftools > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-06 | CVE-2017-10976 | Out-of-bounds Read vulnerability in Swftools 0.9.2 When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c. | 5.0 |
| 2017-07-05 | CVE-2017-9927 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe." | 6.8 |
| 2017-07-05 | CVE-2017-9926 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596." | 6.8 |
| 2017-07-05 | CVE-2017-9925 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d." | 6.8 |
| 2017-07-05 | CVE-2017-9924 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV starting at image00000000_00400000+0x000000000001b72a." | 6.8 |
| 2017-07-05 | CVE-2017-8420 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 SWFTools 2013-04-09-1007 on Windows has a "Data from Faulting Address controls Branch Selection starting at image00000000_00400000+0x0000000000003e71" issue. | 4.3 |
| 2017-05-10 | CVE-2017-7698 | Use After Free vulnerability in Swftools A Use After Free in the pdf2swf part of swftools 0.9.2 and earlier allows remote attackers to execute arbitrary code via a malformed PDF document, possibly a consequence of an error in Gfx.cc in Xpdf 3.02. | 6.8 |
| 2017-05-01 | CVE-2017-8401 | Out-of-bounds Read vulnerability in Swftools In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. | 4.3 |
| 2017-05-01 | CVE-2017-8400 | Out-of-bounds Write vulnerability in Swftools In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function png_load() in lib/png.c:755. | 6.8 |