CVE-2024-26334

Name of the Vulnerable Software and Affected Versions swftools version 0.9.2

Description The issue is related to a segmentation violation in the compileSWFActionCode function located at swftools/lib/action/actioncompiler.c. This function is part of the swftools library, which is used for compiling SWF action code.

Recommendations For swftools version 0.9.2, consider disabling the compileSWFActionCode function as a temporary workaround until a patch is available. Restrict access to the actioncompiler.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.