CVE-2018-13250

Name of the Vulnerable Software and Affected Versions libming version 0.4.8

Description The issue is related to a NULL pointer dereference in the getString function of the decompile.c file, specifically with decompileSTRINGCONCAT. This could allow remote attackers to cause a denial of service by providing a crafted swf file.

Recommendations For libming version 0.4.8, consider avoiding the use of the getString function in conjunction with decompileSTRINGCONCAT until a fix is available. As a temporary workaround, restrict the processing of swf files from untrusted sources to minimize the risk of exploitation.