Lucene search
K

19 matches found

Veracode
Veracode
added 2020/04/10 12:55 a.m.31 views

Arbitrary Code Execution

libtiff is vulnerable to arbitrary code execution. A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF Internet Fax image files, compressed with the CCITT Group 4 compression algorithm. An attacker could use this flaw to create a specially-crafted TIFF file that,...

9.3CVSS3.5AI score0.07474EPSS
Exploits0References45Affected Software1
Malwarebytes
Malwarebytes
added 2019/10/03 3:0 p.m.850 views

Magecart Group 4: A link with Cobalt Group?

Note: This blog post is a collaboration between the Malwarebytes and HYAS Threat Intelligence teams. Magecart is a term that has become a household name, and it refers to the theft of credit card data via online stores. The most common scenario is for criminals to compromise e-commerce sites by...

9.3CVSS8.2AI score0.99933EPSS
Exploits29
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.24 views

Oracle Linux 5 / 6 : libtiff (ELSA-2011-0392)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0392 advisory. - Fix incorrect fix for CVE-2011-0192 Resolves: 688829 Tenable has extracted the preceding description block directly from the Oracle Linux security advisor...

9.3CVSS6.3AI score0.07474EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.25 views

Scientific Linux Security Update : libtiff on SL4.x, SL5.x i386/x86_64

A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF Internet Fax image files, compressed with the CCITT Group 4 compression algorithm. An attacker could use this flaw to create a specially crafted TIFF file that, when opened, would cause an application linked...

9.3CVSS6.4AI score0.07474EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.34 views

Scientific Linux Security Update : libtiff on SL5.x i386/x86_64

A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF files encoded with a 4-bit run-length encoding scheme from ThunderScan. An attacker could use this flaw to create a specially crafted TIFF file that, when opened, would cause an application linked against libtif...

6.8CVSS8.2AI score0.06233EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.20 views

Scientific Linux Security Update : libtiff on SL4.x i386/x86_64

A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF files encoded with a 4-bit run-length encoding scheme from ThunderScan. An attacker could use this flaw to create a specially crafted TIFF file that, when opened, would cause an application linked against libtif...

6.8CVSS8.2AI score0.06233EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.30 views

CentOS Update for libtiff CESA-2011:0318 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

9.3CVSS6.2AI score0.07474EPSS
Exploits0References2
Prion
Prion
added 2011/07/21 11:55 p.m.15 views

Heap overflow

Heap-based buffer overflow in ImageIO in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF image with CCITT Group 4 encoding...

9.3CVSS8.4AI score0.06532EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2011/07/21 11:0 p.m.63 views

CVE-2011-0241

CVE-2011-0241: Heap-based buffer overflow in ImageIO used by Apple Safari’s TIFF handling (CCITT Group 4) could allow remote code execution or a denial of service. Affected vendor/product: Apple Safari on macOS with ImageIO before Safari 5.0.6. The underlying issue is a buffer overflow when proce...

9.3CVSS7.7AI score0.06532EPSS
Exploits0References10Affected Software2
Cvelist
Cvelist
added 2011/07/21 11:0 p.m.28 views

CVE-2011-0241

Heap-based buffer overflow in ImageIO in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF image with CCITT Group 4 encoding...

7.9AI score0.06532EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2011/04/04 12:0 a.m.24 views

Debian DSA-2210-1 : tiff - several vulnerabilities

Several vulnerabilities were discovered in the TIFF manipulation and conversion library : - CVE-2011-0191 A buffer overflow allows to execute arbitrary code or cause a denial of service via a crafted TIFF image with JPEG encoding. This issue affects the Debian 5.0 Lenny package only. -...

9.3CVSS6.8AI score0.07474EPSS
Exploits0References9
OSV
OSV
added 2011/04/03 12:0 a.m.45 views

DSA-2210-1 tiff - several

Bulletin has no description...

9.3CVSS7AI score0.07474EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/03/09 12:0 a.m.37 views

Mandriva Linux Security Advisory : libtiff (MDVSA-2011:043)

A buffer overflow was discovered in libtiff which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF image with CCITT Group 4 encoding CVE-2011-0192. Additionally it was discovered that the fixes for CVE-2009-2347 and CVE-2010-2065...

9.3CVSS7AI score0.07474EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2011/03/07 12:0 a.m.25 views

RedHat Update for libtiff RHSA-2011:0318-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

9.3CVSS6.5AI score0.07474EPSS
Exploits0References2
NVD
NVD
added 2011/03/03 8:0 p.m.14 views

CVE-2011-0192

Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF Internet Fax image file tha...

9.3CVSS9.6AI score0.07474EPSS
Exploits0References43
Prion
Prion
added 2011/03/03 8:0 p.m.33 views

Buffer overflow

Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF Internet Fax image file tha...

9.3CVSS8.4AI score0.07474EPSS
Exploits0References43Affected Software1
Debian CVE
Debian CVE
added 2011/03/03 7:0 p.m.22 views

CVE-2011-0192

Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF Internet Fax image file tha...

9.3CVSS6.4AI score0.07474EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2011/03/03 1:9 a.m.50 views

Important: Red Hat Security Advisory: libtiff security update

Updated libtiff packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.3CVSS6.9AI score0.07474EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2011/03/02 12:0 a.m.39 views

CVE-2011-0192

Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted TIFF Internet Fax image file tha...

9.3CVSS7AI score0.07474EPSS
Exploits0References2
Rows per page
Query Builder