PT-2018-18877 · Libming · Libming

Traceprobe

·

Publicado

2018-03-30

·

Atualizado

2023-04-26

·

CVE-2018-9132

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions libming version 0.4.8
Description The issue is related to a NULL pointer dereference in the getInt function of the decompile.c file. This could allow remote attackers to cause a denial of service by providing a crafted swf file.
Recommendations For libming version 0.4.8, consider avoiding the use of the getInt function in the decompile.c file until a patch is available. As a temporary workaround, restrict the processing of swf files from untrusted sources to minimize the risk of exploitation.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

CVE-2018-9132
DLA-1386-1
MGASA-2020-0032

Produtos afetados

Libming