CVE-2017-8782

The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error.
References
Link Resource
http://seclists.org/fulldisclosure/2017/May/106 Exploit Mailing List Third Party Advisory
http://www.securityfocus.com/bid/98793 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:libming:libming:0.4.8:*:*:*:*:*:*:*

Information

Published : 2017-05-31 04:29

Updated : 2017-06-09 14:35


NVD link : CVE-2017-8782

Mitre link : CVE-2017-8782


JSON object : View

Products Affected

libming

  • libming
CWE
CWE-190

Integer Overflow or Wraparound