PT-2019-13065 · Libming · Ming

Published

2019-06-26

Updated

2020-10-14

CVE-2019-12980

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Ming (aka libming) version 0.4.8

Description The issue is caused by an integer overflow due to an out-of-range left shift in the SWFInput readSBits function. This could allow remote attackers to cause a denial-of-service via a crafted swf file.

Recommendations For version 0.4.8, consider updating to a newer version that contains a fix for this issue, as no specific workaround is provided for this version.

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

CVE-2019-12980

Affected Products

Ming

PT-2019-13065 · Libming · Ming

CVE-2019-12980

Weakness Enumeration

Related Identifiers

Affected Products

References · 7