Heap-Based Buffer Over-Read Vulnerability in SWFTools 0.9.2's ttftool

CVE-2017-10976 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.

Learn more about our Web Application Penetration Testing UK.