Lucene search
+L

179 matches found

cnvd
cnvd
added 2017/07/17 12:0 a.m.40 views

Silicon Graphics LibTIFF 'tools/tiff2pdf.c' Heap Buffer Overflow Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A heap buffer overflow vulnerability exists in the tools/tiff2pdf.c file in Silicon Graphics...

8.8CVSS7.8AI score0.0363EPSS
Exploits1References1
osv
osv
added 2017/07/17 12:0 a.m.9 views

UBUNTU-CVE-2017-11335

There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes out-of-bounds write related to the ZIPDecode function in tifzip.c. A crafted input may lead to a remote denial of service attack or an arbitrary...

8.8CVSS7.7AI score0.0363EPSS
Exploits1References3
zdt
zdt
added 2017/07/07 12:0 a.m.45 views

LibTIFF - tif_jbig.c Denial of Service Exploit

Exploit for linux platform in category dos / poc Source: http://bugzilla.maptools.org/showbug.cgi?id=2706 Triggered by “./tiff2ps $POC” or “./tiff2pdf $POC” Triggered by “./tiff2ps $POC” or “./tiff2pdf $POC” The asan debug information is below: $./tiff2ps $POC...

4.3CVSS7.2AI score0.07482EPSS
Exploits2
osv
osv
added 2017/06/26 12:29 p.m.5 views

DEBIAN-CVE-2017-9935

In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2pwritepdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2pfree, memory...

8.8CVSS8.3AI score0.03918EPSS
Exploits1References1
osv
osv
added 2017/06/26 12:0 a.m.5 views

UBUNTU-CVE-2017-9935

In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2pwritepdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2pfree, memory...

8.8CVSS7.3AI score0.03918EPSS
Exploits1References3
nessus
nessus
added 2017/05/01 12:0 a.m.26 views

EulerOS 2.0 SP2 : libtiff (EulerOS-SA-2017-1020)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
nessus
nessus
added 2017/05/01 12:0 a.m.38 views

EulerOS 2.0 SP1 : libtiff (EulerOS-SA-2017-1019)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
nessus
nessus
added 2017/03/07 12:0 a.m.38 views

Amazon Linux AMI : libtiff / compat-libtiff3 (ALAS-2017-802)

Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. CVE-2016-9533 , CVE-2016-9534 ,...

9.8CVSS8.2AI score0.04767EPSS
Exploits3References9
osv
osv
added 2017/01/06 9:59 p.m.3 views

DEBIAN-CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS8.5AI score0.04298EPSS
Exploits2References1
osv
osv
added 2017/01/06 9:59 p.m.32 views

CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS7.9AI score
Exploits0References5
osv
osv
added 2017/01/06 9:59 p.m.2 views

ALPINE-CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS8.3AI score0.04298EPSS
Exploits2References1
prion
prion
added 2017/01/06 9:59 p.m.24 views

Heap overflow

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

6.8CVSS8AI score0.04298EPSS
Exploits2References5Affected Software1
cvelist
cvelist
added 2017/01/06 9:0 p.m.31 views

CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

8.6AI score0.04298EPSS
Exploits2References5
osv
osv
added 2017/01/06 12:0 a.m.3 views

UBUNTU-CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS7.4AI score0.04298EPSS
Exploits2References4
ubuntucve
ubuntucve
added 2017/01/06 12:0 a.m.30 views

CVE-2016-5652

An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS7.3AI score0.04298EPSS
Exploits2References3
osv
osv
added 2016/12/31 12:0 a.m.4 views

UBUNTU-CVE-2016-10094

Off-by-one error in the t2preadwritepdfimagetile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image...

7.8CVSS7AI score0.01813EPSS
Exploits1References3
mageia
mageia
added 2016/11/28 12:13 a.m.57 views

Updated libtiff packages fix security vulnerability

The updated packages fix: - A regression introduced by the fix for CVE-2016-9297 CVE-2016-9448. - An out-of-bounds Write memcpy and less bound check in tiff2pdf CVE-2016-9453...

7.8CVSS2.7AI score0.04975EPSS
Exploits0References5
cnvd
cnvd
added 2016/11/23 12:0 a.m.5 views

LibTIFF tools/tiff2pdf.c Out-of-bounds Write Heap Buffer Overflow Overflow Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A security vulnerability exists in libtiff version 4.0.6 in tools/tiff2pdf.c, which can be...

9.8CVSS7.3AI score0.03135EPSS
Exploits0References1
debian
debian
added 2016/11/02 12:53 p.m.157 views

[SECURITY] [DLA 693-1] tiff security update

Package : tiff Version : 4.0.2-6+deb7u7 CVE ID : CVE-2014-8128 CVE-2015-7554 CVE-2015-8668 CVE-2016-3186 CVE-2016-3619 CVE-2016-3620 CVE-2016-3621 CVE-2016-3631 CVE-2016-3632 CVE-2016-3633 CVE-2016-3634 CVE-2016-5102 CVE-2016-5318 CVE-2016-5319 CVE-2016-5652 CVE-2016-6223 CVE-2016-8331 Debian Bug...

9.8CVSS7AI score0.13722EPSS
Exploits10
talos
talos
added 2016/10/25 12:0 a.m.98 views

LibTIFF TIFF2PDF TIFFTAG_JPEGTABLES Remote Code Execution Vulnerability

Summary An exploitable heap based buffer overflow exists in the handling of TIFF images in LibTIFF’s TIFF2PDF tool. A crafted TIFF document can lead to a heap based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means...

7CVSS8.6AI score0.04298EPSS
Exploits2
Rows per page
Query Builder