[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0803Date: (C)2004-12-23   (M)2023-12-22


Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
SUNALERT-101677
BID-11406
SECUNIA-12818
http://marc.info/?l=bugtraq&m=109778785107450&w=2
SUNALERT-201072
CLA-2004:888
DSA-567
GLSA-200410-11
MDKSA-2004:109
MDKSA-2005:052
RHSA-2004:577
RHSA-2005:021
RHSA-2005:354
SUSE-SA:2004:038
VU#948752
http://scary.beasts.org/security/CESA-2004-006.txt
http://www.kde.org/info/security/advisory-20041209-2.txt
libtiff-library-decoding-bo(17703)
oval:org.mitre.oval:def:100114
oval:org.mitre.oval:def:8896

CPE    50
cpe:/o:apple:mac_os_x_server:10.3.6
cpe:/o:apple:mac_os_x_server:10.3.5
cpe:/o:apple:mac_os_x:10.2.7
cpe:/o:apple:mac_os_x:10.2.6
...

© SecPod Technologies