Vulnerabilities (CVE)

Filtered by vendor Swftools Subscribe
Filtered by product Swftools
Total 102 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-8401 1 Swftools 1 Swftools 2024-02-04 4.3 MEDIUM 6.5 MEDIUM
In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS.
CVE-2010-1516 1 Swftools 1 Swftools 2024-02-04 9.3 HIGH N/A
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.