CNNVD-202506-2596 Information

CNNVD ID

CNNVD-202506-2596

Related CVE

CVE-2025-6271

• CNNVD Published: 2025-06-19

Description (Chinese)

SWFTools是Matthias Kramm个人开发者的一组用于处理 Adobe Flash 文件（SWF 文件）的实用程序。 SWFTools 0.9.2及之前版本存在缓冲区错误漏洞，该漏洞源于组件wav2swf中文件lib/wav.c函数wav_convert2mono存在越界读取。

Description (English)

SWFTools is a group of practical programs used by Matthias Kramm personal developers to process Adobe Flash files (SWF files). SWFTools 0.9.2 and previous versions had an error loophole in the buffer zone, resulting from the cross-border reading of document lib/wav.c function wav convert2mono in component wav2swf.

Hazard Level

Critical

Vulnerability Type

缓冲区错误

Affected Vendor

Live Support

Published

2025-06-19

Last Modified

2026-02-24

References

https://vuldb.com/?id.313275 https://github.com/user-attachments/files/19415662/wav2swf_crash.txt https://vuldb.com/?ctiid.313275 https://vuldb.com/?submit.593005 https://github.com/swftools/swftools/issues/239 https://access.redhat.com/security/cve/cve-2025-6271