PT-2017-19290 · Swftools · Swftools

Published

2017-07-05

Updated

2017-07-13

CVE-2017-9927

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SWFTools version 2013-04-09-1007

Description The issue allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000 00400000+0x000000000001b5fe."

Recommendations For SWFTools version 2013-04-09-1007, consider avoiding the use of the png2swf tool until a patch or fix is available to prevent potential denial of service or other unspecified impacts from crafted files.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2017-9927

Affected Products

Swftools

PT-2017-19290 · Swftools · Swftools

CVE-2017-9927

Weakness Enumeration

Related Identifiers

Affected Products

References · 6