CWE:
 

Tytuł
Data
Autor
High
Google SketchUp lib3ds 3DS Importer Memory Corruption
18.01.2010
CORE


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2021-09-20
Medium
CVE-2021-39595

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfx_alloc() located in mem.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39582

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_GetPlaceObject() located in swfobject.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39579

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function string_hash() located in q.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39577

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function main() located in swfdump.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39574

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function pool_read() located in pool.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39569

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function OpAdvance() located in swfaction.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39564

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A heap-buffer-overflow exists in the function swf_DumpActions() located in swfaction.c. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39561

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function Gfx::opSetFillColorN() located in Gfx.cc. It allows an attacker to cause code Execution.

 
Medium
CVE-2021-39558

Vendor: Swftools
Software: Swftools
 

 
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function VectorGraphicOutputDev::drawGeneralImage() located in VectorGraphicOutputDev.cc. It allows an attacker to cause code Execution.

 
2021-09-17
Waiting for details
CVE-2021-38406

Updating...
 

 
Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top