CVE-2010-1516

EUVD-2010-1543
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
Affected Products (NVD)
VendorProductVersion
swftoolsswftools
0.9.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
swftools
dapper
dne
hardy
ignored
jaunty
ignored
karmic
ignored
lucid
ignored
maverick
dne
natty
dne
oneiric
dne
Common Weakness Enumeration
References
http://secunia.com/advisories/39970
http://secunia.com/advisories/48821
http://secunia.com/secunia_research/2010-80/
http://security.gentoo.org/glsa/glsa-201204-05.xml
http://www.securityfocus.com/archive/1/513102/100/0/threaded
http://secunia.com/advisories/39970
http://secunia.com/advisories/48821
http://secunia.com/secunia_research/2010-80/
http://security.gentoo.org/glsa/glsa-201204-05.xml
http://www.securityfocus.com/archive/1/513102/100/0/threaded