VDB
CVE-2010-1516
CVE-2010-1516
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, related to the jpeg_load function in lib/jpeg.c.
EPSS 2.36% · 85.3th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
2.36%
85.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| swftools | swftools | 0.9.1 |
| n/a | n/a | n/a |
Timeline
- Aug 17, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- 39970 third-party-advisory
- http://secunia.com/secunia_research/2010-80/ url
- GLSA-201204-05 vendor-advisory
- 48821 third-party-advisory
- 20100813 Secunia Research: SWFTools Two Integer Overflow Vulnerabilities mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2010-1516 advisory
- http://secunia.com/secunia_research/2010-80 url