CVE-2010-1516

Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
flexeraCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
VendorProductVersion
swftoolsswftools
0.9.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
swftools
oneiric
dne
natty
dne
maverick
dne
lucid
ignored
karmic
ignored
jaunty
ignored
hardy
ignored
dapper
dne
Common Weakness Enumeration
References
http://secunia.com/advisories/39970
http://secunia.com/advisories/48821
http://secunia.com/secunia_research/2010-80/
http://security.gentoo.org/glsa/glsa-201204-05.xml
http://www.securityfocus.com/archive/1/513102/100/0/threaded
http://secunia.com/advisories/39970
http://secunia.com/advisories/48821
http://secunia.com/secunia_research/2010-80/
http://security.gentoo.org/glsa/glsa-201204-05.xml
http://www.securityfocus.com/archive/1/513102/100/0/threaded