[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2017-16711 -- swftools

ID: oval:org.secpod.oval:def:1901727Date: (C)2019-06-03   (M)2023-12-20
Class: VULNERABILITYFamily: unix




The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which allows remote attackers to cause a denial of service because of extractDefinitions in lib/readers/swf.c and fill_line_bitmap in lib/devices/render.c, as demonstrated by swfrender.

Platform:
Ubuntu 16.04
Ubuntu 18.10
Ubuntu 14.04
Ubuntu 18.04
Product:
swftools
Reference:
CVE-2017-16711
CVE    1
CVE-2017-16711
CPE    5
cpe:/o:ubuntu:ubuntu_linux:16.04
cpe:/a:swftools:swftools
cpe:/o:ubuntu:ubuntu_linux:18.04
cpe:/o:ubuntu:ubuntu_linux:14.04
...

© SecPod Technologies