Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ming
(Libming)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 17 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-07-28 | CVE-2017-11704 | A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | Ming | 6.5 | ||
| 2017-07-28 | CVE-2017-11703 | A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | Ming | 6.5 | ||
| 2017-07-29 | CVE-2017-11733 | A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | Debian_linux, Ming | 5.5 | ||
| 2017-07-29 | CVE-2017-11732 | A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | Debian_linux, Ming | 5.5 | ||
| 2017-07-29 | CVE-2017-11731 | An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | Ming | 5.5 | ||
| 2019-02-25 | CVE-2019-9114 | Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a. | Ming | 8.8 | ||
| 2019-02-25 | CVE-2019-9113 | Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a. | Ming | 8.8 |