Sam-Haha

#7245of 53,624
37.7Total CVSS
Vulnerabilities · 5
Medium
1
High
4
PT-2024-20793
8.8
2024-02-14
Swftools · Swftools · CVE-2024-25165
**Name of the Vulnerable Software and Affected Versions** SWFTools version 0.9.2 **Description** A global-buffer-overflow issue was found in the function `LineText` at `lib/swf5compiler.flex`. **Recommendations** For SWFTools version 0.9.2, consider disabling the `LineText` function in `lib/swf5compiler.flex` as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-19613
7.8
2024-01-19
Swftools · Swftools · CVE-2024-22919
**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** A global-buffer-overflow issue was discovered in swftools via the `parseExpression` function at swftools/src/swfc.c:2587. This issue can potentially lead to a denial of service. **Recommendations** For swftools version 0.9.2, consider disabling the `parseExpression` function as a temporary workaround until a patch is available.
PT-2024-19627
7.8
2024-01-19
Swftools · Swftools · CVE-2024-22955
**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** A stack-buffer-underflow issue was discovered in swftools via the `parseExpression` function at swftools/src/swfc.c:2576. This issue can potentially lead to a denial of service. **Recommendations** For swftools version 0.9.2, consider disabling the `parseExpression` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2024-19628
7.8
2024-01-19
Swftools · Swftools · CVE-2024-22956
**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** A heap-use-after-free issue was discovered in swftools via the `removeFromTo` function at swftools/src/swfc.c:838. This issue can potentially lead to a denial of service. **Recommendations** For swftools version 0.9.2, consider disabling the `removeFromTo` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2024-19629
5.5
2024-01-19
Swftools · Swftools · CVE-2024-22957
**Name of the Vulnerable Software and Affected Versions** swftools version 0.9.2 **Description** The issue is related to an Out-of-bounds Read vulnerability. It occurs via the function `dict do lookup` in the file swftools/lib/q.c at line 1190. **Recommendations** For swftools version 0.9.2, consider disabling the `dict do lookup` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.