Libming

Libming

105 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2018-13066

  • EPSS 0.38%
  • Veröffentlicht 02.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:46:20

There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWF_DEFINEBUTTON2, parseSWF_DEFINEFONT, parseSWF_DEFINEFONTINFO, parseSWF_DEFINELOSSLESS, parseSWF_DEFINESPRITE, parseSWF_DEFINETEXT, parseSWF_D...

8.8

CVE-2018-11225

Exploit
  • EPSS 0.48%
  • Veröffentlicht 17.05.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:56

The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or...

8.8

CVE-2018-11226

Exploit
  • EPSS 0.47%
  • Veröffentlicht 17.05.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:56

The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash)...

8.8

CVE-2018-11100

  • EPSS 0.52%
  • Veröffentlicht 15.05.2018 01:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:40

The decompileSETTARGET function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and applicati...

8.8

CVE-2018-11095

  • EPSS 0.52%
  • Veröffentlicht 15.05.2018 00:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:40

The decompileJUMP function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application cr...

8.8

CVE-2018-11017

Exploit
  • EPSS 0.47%
  • Veröffentlicht 13.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:30

The newVar_N function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) ...

6.5

CVE-2018-9165

  • EPSS 0.24%
  • Veröffentlicht 01.04.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:07

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL po...

6.5

CVE-2018-9132

Exploit
  • EPSS 0.65%
  • Veröffentlicht 30.03.2018 08:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:02

libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file.

8.8

CVE-2018-9009

Exploit
  • EPSS 0.63%
  • Veröffentlicht 25.03.2018 03:29:01
  • Zuletzt bearbeitet 21.11.2024 04:14:46

In libming 0.4.8, there is a use-after-free in the decompileJUMP function of the decompile.c file.

6.5

CVE-2018-8964

Exploit
  • EPSS 0.42%
  • Veröffentlicht 23.03.2018 21:29:01
  • Zuletzt bearbeitet 21.11.2024 04:14:41

In libming 0.4.8, the decompileDELETE function of decompile.c has a use-after-free. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file.