VYPR

Vendor CVEs

Swftools

All CVEs

111 total · sorted by risk
  • CVE-2017-11101HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_Relocate() function in lib/modules/swftools.c.

  • CVE-2017-11100HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.

  • CVE-2017-11099HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wav_convert2mono() function in lib/wav.c.

  • CVE-2017-11098HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead to a Segmentation Violation in the png_load() function in lib/png.c.

  • CVE-2017-11097HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dict_lookup() function in lib/q.c.

  • CVE-2017-11096HigJul 7, 2017
    risk 0.57cvss 8.8epss 0.01

    When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer Dereference in the swf_DeleteFilter() function in lib/modules/swffilter.c.

  • CVE-2017-9927HigJul 5, 2017
    risk 0.57cvss 8.8epss 0.01

    In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe."

  • CVE-2017-9926HigJul 5, 2017
    risk 0.57cvss 8.8epss 0.01

    In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596."

  • CVE-2017-9925HigJul 5, 2017
    risk 0.57cvss 8.8epss 0.02

    In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."

  • CVE-2017-9924HigJul 5, 2017
    risk 0.57cvss 8.8epss 0.02

    In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "User Mode Write AV starting at image00000000_00400000+0x000000000001b72a."

  • CVE-2017-8400HigMay 1, 2017
    risk 0.57cvss 8.8epss 0.02

    In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function png_load() in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution.

  • CVE-2017-1000187HigNov 17, 2017
    risk 0.51cvss 7.8epss 0.01

    In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF()

  • CVE-2017-16797HigNov 12, 2017
    risk 0.51cvss 7.8epss 0.01

    In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and application crash) or possibly…

  • CVE-2017-16796HigNov 12, 2017
    risk 0.51cvss 7.8epss 0.01

    In SWFTools 0.9.2, the png_load function in lib/png.c does not check the return value of a realloc call, which allows remote attackers to cause a denial of service (invalid write and application crash) or possibly have unspecified other impact via vectors involving an IDAT tag…

  • CVE-2017-16793HigNov 12, 2017
    risk 0.51cvss 7.8epss 0.01

    The wav_convert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service (incorrect malloc and heap-based buffer overflow) or possibly have unspecified other impact via a crafted file.

  • CVE-2017-7698HigMay 10, 2017
    risk 0.51cvss 7.8epss 0.02

    A Use After Free in the pdf2swf part of swftools 0.9.2 and earlier allows remote attackers to execute arbitrary code via a malformed PDF document, possibly a consequence of an error in Gfx.cc in Xpdf 3.02.

  • CVE-2017-10976HigJul 6, 2017
    risk 0.49cvss 7.5epss 0.01

    When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.

  • CVE-2017-8420MedJul 5, 2017
    risk 0.42cvss 6.5epss 0.01

    SWFTools 2013-04-09-1007 on Windows has a "Data from Faulting Address controls Branch Selection starting at image00000000_00400000+0x0000000000003e71" issue. This issue can be triggered by a malformed TTF file that is mishandled by font2swf. Attackers could exploit this issue…

  • CVE-2017-8401MedMay 1, 2017
    risk 0.42cvss 6.5epss 0.01

    In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the function png_load() in lib/png.c:724. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS.

  • CVE-2017-16890MedJul 9, 2018
    risk 0.36cvss 5.5epss 0.01

    SWFTools 0.9.2 has a divide-by-zero error in the wav_convert2mono function in lib/wav.c because the align value may be zero.

  • CVE-2017-16868MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools 0.9.2, the wav_convert2mono function in lib/wav.c does not properly restrict a multiplication within a malloc call, which allows remote attackers to cause a denial of service (integer overflow and NULL pointer dereference) via a crafted WAV file.

  • CVE-2017-1000186MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools, a stack overflow was found in pdf2swf.

  • CVE-2017-1000185MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools, a memcpy buffer overflow was found in gif2swf.

  • CVE-2017-1000182MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools, a memory leak was found in wav2swf.

  • CVE-2017-1000176MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools, a memcpy buffer overflow was found in swfc.

  • CVE-2017-1000174MedNov 17, 2017
    risk 0.36cvss 5.5epss 0.01

    In SWFTools, an address access exception was found in swfdump swf_GetBits().

  • CVE-2017-16794MedNov 12, 2017
    risk 0.36cvss 5.5epss 0.01

    The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated…

  • CVE-2017-16711MedNov 9, 2017
    risk 0.36cvss 5.5epss 0.01

    The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) because of extractDefinitions in…

  • CVE-2025-6271LowJun 19, 2025
    risk 0.21cvss 3.3epss 0.00

    A vulnerability, which was classified as problematic, was found in swftools up to 0.9.2. This affects the function wav_convert2mono in the library lib/wav.c of the component wav2swf. The manipulation leads to out-of-bounds read. The attack needs to be approached locally. The…

  • CVE-2024-28458Apr 11, 2024
    risk 0.00cvss epss 0.01

    Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the appliation via the function compileSWFActionCode in action/actioncompiler.c.

  • CVE-2024-26335Mar 5, 2024
    risk 0.00cvss epss 0.00

    swftools v0.9.2 was discovered to contain a segmentation violation via the function state_free at swftools/src/swfc-history.c.

  • CVE-2024-26339Mar 5, 2024
    risk 0.00cvss epss 0.01

    swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/src/swfc+0x48318a.

  • CVE-2024-26337Mar 5, 2024
    risk 0.00cvss epss 0.01

    swftools v0.9.2 was discovered to contain a segmentation violation via the function s_font at swftools/src/swfc.c.

  • CVE-2024-26334Mar 5, 2024
    risk 0.00cvss epss 0.00

    swftools v0.9.2 was discovered to contain a segmentation violation via the function compileSWFActionCode at swftools/lib/action/actioncompiler.c.

  • CVE-2024-25165Feb 14, 2024
    risk 0.00cvss epss 0.01

    A global-buffer-overflow vulnerability was found in SWFTools v0.9.2, in the function LineText at lib/swf5compiler.flex.

  • CVE-2024-22957Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190.

  • CVE-2024-22562Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools 0.9.2 was discovered to contain a Stack Buffer Underflow via the function dict_foreach_keyvalue at swftools/lib/q.c.

  • CVE-2024-22913Jan 19, 2024
    risk 0.00cvss epss 0.00

    A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an attacker to cause code execution.

  • CVE-2024-22915Jan 19, 2024
    risk 0.00cvss epss 0.00

    A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.

  • CVE-2024-22956Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838

  • CVE-2024-22912Jan 19, 2024
    risk 0.00cvss epss 0.00

    A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.

  • CVE-2024-22919Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587.

  • CVE-2024-22911Jan 19, 2024
    risk 0.00cvss epss 0.00

    A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.

  • CVE-2024-22914Jan 19, 2024
    risk 0.00cvss epss 0.00

    A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.

  • CVE-2024-22920Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.

  • CVE-2024-22955Jan 19, 2024
    risk 0.00cvss epss 0.00

    swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576.

  • CVE-2023-37644Jan 11, 2024
    risk 0.00cvss epss 0.00

    SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.

  • CVE-2023-26991Apr 4, 2023
    risk 0.00cvss epss 0.00

    SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.

  • CVE-2022-35080Oct 13, 2022
    risk 0.00cvss epss 0.00

    SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_load at /lib/png.c.

  • CVE-2022-35081Oct 13, 2022
    risk 0.00cvss epss 0.00

    SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_read_header at /src/png2swf.c.

Page 1 of 3