[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0886Date: (C)2005-01-27   (M)2023-12-22


Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1011674
SUNALERT-101677
BID-11406
SECUNIA-12818
2004-0054
SUNALERT-201072
CLA-2004:888
DSA-567
MDKSA-2004:109
MDKSA-2005:052
OpenPKG-SA-2004.043
P-015
RHSA-2004:577
RHSA-2005:021
RHSA-2005:354
SUSE-SA:2004:038
VU#687568
http://www.kde.org/info/security/advisory-20041209-2.txt
libtiff-bo(17715)
oval:org.mitre.oval:def:100116
oval:org.mitre.oval:def:9907

CPE    50
cpe:/o:apple:mac_os_x_server:10.3.6
cpe:/o:apple:mac_os_x_server:10.3.5
cpe:/o:apple:mac_os_x:10.2.7
cpe:/o:apple:mac_os_x:10.2.6
...

© SecPod Technologies