CVE-2016-9828

Name of the Vulnerable Software and Affected Versions libming version 0.4.7

Description The issue allows remote attackers to cause a denial of service, specifically a NULL pointer dereference, by providing a crafted SWF file. This is due to a problem in the dumpBuffer function in read.c in the listswf tool.

Recommendations For libming version 0.4.7, consider avoiding the use of the dumpBuffer function in the listswf tool until a patch is available. As a temporary workaround, restrict the processing of SWF files from untrusted sources to minimize the risk of exploitation.