Libming

Libming

107 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2018-13250

Exploit
  • EPSS 0.36%
  • Veröffentlicht 05.07.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:46:43

libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file.

6.5

CVE-2018-13251

Exploit
  • EPSS 0.36%
  • Veröffentlicht 05.07.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:46:43

In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to parseSWF_DEFINEBITSJPEG2. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted sw...

7.5

CVE-2018-13066

  • EPSS 0.38%
  • Veröffentlicht 02.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:46:20

There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWF_DEFINEBUTTON2, parseSWF_DEFINEFONT, parseSWF_DEFINEFONTINFO, parseSWF_DEFINELOSSLESS, parseSWF_DEFINESPRITE, parseSWF_DEFINETEXT, parseSWF_D...

8.8

CVE-2018-11225

Exploit
  • EPSS 0.5%
  • Veröffentlicht 17.05.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:56

The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or...

8.8

CVE-2018-11226

Exploit
  • EPSS 0.45%
  • Veröffentlicht 17.05.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:56

The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash)...

8.8

CVE-2018-11100

  • EPSS 0.49%
  • Veröffentlicht 15.05.2018 01:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:40

The decompileSETTARGET function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and applicati...

8.8

CVE-2018-11095

  • EPSS 0.49%
  • Veröffentlicht 15.05.2018 00:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:40

The decompileJUMP function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application cr...

8.8

CVE-2018-11017

Exploit
  • EPSS 0.44%
  • Veröffentlicht 13.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:30

The newVar_N function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) ...

6.5

CVE-2018-9165

  • EPSS 0.24%
  • Veröffentlicht 01.04.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:07

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL po...

6.5

CVE-2018-9132

Exploit
  • EPSS 0.53%
  • Veröffentlicht 30.03.2018 08:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:02

libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file.