PT-2019-13065 · Libming · Ming

Publicado

2019-06-26

Atualizado

2020-10-14

CVE-2019-12980

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Ming (aka libming) version 0.4.8

Description The issue is caused by an integer overflow due to an out-of-range left shift in the SWFInput readSBits function. This could allow remote attackers to cause a denial-of-service via a crafted swf file.

Recommendations For version 0.4.8, consider updating to a newer version that contains a fix for this issue, as no specific workaround is provided for this version.

Correção

Integer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-190

Identificadores relacionados

CVE-2019-12980

Produtos afetados

Ming

PT-2019-13065 · Libming · Ming

CVE-2019-12980

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7