Swftools

swftools

Vendor: Swftools • 126 CVEs

CVEs (126)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-1000186 1Swftools 1Swftools May 13, 2026 Nov 17, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In SWFTools, a stack overflow was found in pdf2swf.
CVE-2017-1000185 1Swftools 1Swftools May 13, 2026 Nov 17, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In SWFTools, a memcpy buffer overflow was found in gif2swf.
CVE-2017-1000182 1Swftools 1Swftools May 13, 2026 Nov 17, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In SWFTools, a memory leak was found in wav2swf.
CVE-2017-1000176 1Swftools 1Swftools May 13, 2026 Nov 17, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In SWFTools, a memcpy buffer overflow was found in swfc.
CVE-2017-1000174 1Swftools 1Swftools May 13, 2026 Nov 17, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In SWFTools, an address access exception was found in swfdump swf_GetBits().
CVE-2017-16797 1Swftools 1Swftools May 13, 2026 Nov 12, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (integer overflow, hea...Show more In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and application crash) or possibly have unspecified other impact via a crafted PNG file.Show less
CVE-2017-16796 1Swftools 1Swftools May 13, 2026 Nov 12, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application crash) or possibly have u...Show more In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application crash) or possibly have unspecified other impact via vectors involving an IDAT tag in a crafted PNG file.Show less
CVE-2017-16794 1Swftools 1Swftools May 13, 2026 Nov 12, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read...Show more The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an erroneous png_load call that occurs because of incorrect integer data types in png2swf.Show less
CVE-2017-16793 1Swftools 1Swftools May 13, 2026 Nov 12, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly h...Show more The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly have unspecified other impact via a crafted file.Show less
CVE-2017-16711 1Swftools 1Swftools May 13, 2026 Nov 9, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service (NULL pointer dereference and applicat...Show more The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) because of extractDefinitions in lib/readers/swf.c and fill_line_bitmap in lib/devices/render.c, as demonstrated by swfrender.Show less
CVE-2017-11101 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_Relocate() function in lib/modules/swftools.c.
CVE-2017-11100 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.
CVE-2017-11099 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c.
CVE-2017-11098 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c.
CVE-2017-11097 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c.
CVE-2017-11096 1Swftools 1Swftools May 13, 2026 Jul 7, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c.
CVE-2017-10976 1Swftools 1Swftools May 13, 2026 Jul 6, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.
CVE-2017-9927 1Swftools 1Swftools May 13, 2026 Jul 5, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000...Show more In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe."Show less
CVE-2017-9926 1Swftools 1Swftools May 13, 2026 Jul 5, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000...Show more In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596."Show less
CVE-2017-9925 1Swftools 1Swftools May 13, 2026 Jul 5, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyD...Show more In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."Show less

Previous 1 2 3 4 567 Next