RSS   Vulnerabilities for 'Swfdec'   RSS

2008-08-27
 
CVE-2008-3796

CWE-20
 

 
Swfdec 0.6 before 0.6.8 allows remote attackers to cause a denial of service (application crash) via a 1x1 JPEG image.

 
2008-04-16
 
CVE-2008-1834

CWE-264
 

 
swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file.

 


Copyright 2024, cxsecurity.com

 

Back to Top