Filtered by vendor Swftools
Subscribe
Total
103 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-7698 | 1 Swftools | 1 Swftools | 2017-05-24 | 6.8 MEDIUM | 7.8 HIGH |
| A Use After Free in the pdf2swf part of swftools 0.9.2 and earlier allows remote attackers to execute arbitrary code via a malformed PDF document, possibly a consequence of an error in Gfx.cc in Xpdf 3.02. | |||||
| CVE-2017-8400 | 1 Swftools | 1 Swftools | 2017-05-12 | 6.8 MEDIUM | 8.8 HIGH |
| In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function png_load() in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution. | |||||
| CVE-2017-8401 | 1 Swftools | 1 Swftools | 2017-05-12 | 4.3 MEDIUM | 6.5 MEDIUM |
| In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS. | |||||