Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Gnash DefineSprite Tag 'sprite_definition.cpp' 远程代码执行漏洞
Vulnerability Description
GNU Gnash(又称GNU Flash Player)中的server/parser/sprite_definition.cpp允许远程攻击者借助DEFINESPRITE元素中的大量SHOWFRAME元素,执行任意代码。这会触发内存破坏和允许攻击者自由调用任意地址,可能源于一个缓冲区溢出漏洞。
CVSS Information
N/A
Vulnerability Type
N/A