[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-1183Date: (C)2005-01-06   (M)2023-12-22


Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF file.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.1
Exploit Score: 4.9
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-12173
SECUNIA-13728
SECUNIA-13776
http://marc.info/?l=bugtraq&m=110503635113419&w=2
CLA-2005:920
DSA-626
GLSA-200501-06
MDKSA-2005:001
MDKSA-2005:002
MDKSA-2005:052
RHSA-2005:019
RHSA-2005:035
SUSE-SA:2005:001
libtiff-tiffdump-bo(18782)
oval:org.mitre.oval:def:9743

CPE    12
cpe:/a:libtiff:libtiff:3.5.3
cpe:/a:libtiff:libtiff:3.7.1
cpe:/a:libtiff:libtiff:3.6.1
cpe:/a:libtiff:libtiff:3.5.2
...

© SecPod Technologies