CVE-2017-7698 (NVD)

2017-05-10

A Use After Free in the pdf2swf part of swftools 0.9.2 and earlier allows remote attackers to execute arbitrary code via a malformed PDF document, possibly a consequence of an error in Gfx.cc in Xpdf 3.02.

Products Swftools
Type Use After Free (CWE-416)
First patch - None (likely due to unavailable code)
Links https://github.com/matthiaskramm/swftools/pull/19