Lucene search

K

PRIOn knowledge basePRION:CVE-2009-5022

HistoryMay 03, 2011 - 8:55 p.m.

Heap overflow

2011-05-0320:55:00

PRIOn knowledge base

www.prio-n.com

3

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.268 Low

EPSS

Percentile

96.6%

Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.

CPENameOperatorVersion
libtiffeq3.4 beta29
libtiffeq3.7.0 beta
libtiffeq3.6.0 beta2
libtiffeq3.4 beta34
libtiffeq3.6.1
libtiffeq3.6.0 beta
libtiffeq3.8.0
libtiffeq3.7.3
libtiffeq3.4 beta32
libtiffeq3.4 beta31

Rows per page:

1-10 of 471

References

bugzilla.maptools.org/show_bug.cgi?id=1999

openwall.com/lists/oss-security/2011/04/12/10

secunia.com/advisories/44271

secunia.com/advisories/50726

security.gentoo.org/glsa/glsa-201209-02.xml

securitytracker.com/id?1025380

www.debian.org/security/2011/dsa-2256

www.mandriva.com/security/advisories?name=MDVSA-2011:078

www.redhat.com/support/errata/RHSA-2011-0452.html

www.remotesensing.org/libtiff/v3.9.5.html

www.securityfocus.com/bid/47338

www.ubuntu.com/usn/USN-1120-1

www.vupen.com/english/advisories/2011/1014

www.vupen.com/english/advisories/2011/1082

bugzilla.redhat.com/show_bug.cgi?id=695885

exchange.xforce.ibmcloud.com/vulnerabilities/66774

lists.fedoraproject.org/pipermail/package-announce/2011-April/058478.html

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.268 Low

EPSS

Percentile

96.6%

Related for PRION:CVE-2009-5022

nessus12 debian1 ubuntu1 ubuntucve1 openvas13 debiancve1 oraclelinux1 securityvulns2 cvelist1 redhat1 cve1 fedora2 gentoo1